Verify WebAuthn registration for a directory password migration transaction and create a session.
POST
/api/auth/directory-password/migration/passkey/verify
Code sample: Shell / cURL
curl --request POST \ --url https://auth.example.com/api/auth/directory-password/migration/passkey/verify \ --header 'Content-Type: application/json' \ --data '{ "transaction_id": "damt_123", "transaction_token": "migration-transaction-token", "challenge_id": "challenge_123", "credential": { "id": "credential-id", "type": "public-key", "response": {} }, "device_name": "Work laptop" }'Request Body required
Section titled “Request Body required ” Media type application/json
object
transaction_id
required
string
transaction_token
required
string
challenge_id
required
string
credential
required
object
key
additional properties
device_name
string
key
additional properties
Example
{ "transaction_id": "damt_123", "transaction_token": "migration-transaction-token", "challenge_id": "challenge_123", "credential": { "id": "credential-id", "type": "public-key", "response": {} }, "device_name": "Work laptop"}Responses
Section titled “ Responses ”Successful JSON response.
Media type application/json
One of:
object
ok
required
boolean
expires_in
required
integer
session
required
object
userId
string
createdAt
integer
expiresAt
integer
authTime
integer
acr
string
amr
Array<string>
key
additional properties
authorization
object
key
additional properties
redirect_url
string format: uri
object
ok
required
boolean
migration
required
object
required
required
boolean
action
required
string
transaction_id
required
string
transaction_token
required
string
expires_at
required
integer
campaign_id
required
string
state
required
string
email_code_fallback_mode
required
string
email_code_fallback_available
required
boolean
email_code_fallback
key
additional properties
user
required
key
additional properties
object
ok
required
boolean
recovery
required
object
required
required
boolean
reason
required
string
transaction_id
required
string
transaction_token
required
string
expires_at
required
integer
masked_email
required
string
key
additional properties
user
required
key
additional properties
Example
{ "ok": true, "expires_in": 86400, "session": { "userId": "user_123", "createdAt": 1770000000000, "expiresAt": 1770086400000, "authTime": 1770000000, "acr": "urn:mace:incommon:iap:bronze", "amr": [ "pwd", "directory" ] }, "user": { "id": "user_123", "name": "Example User" }}Successful response. The representation can be JSON, HTML, or a redirect.
Successful response. The representation can be JSON, HTML, or a redirect.
Successful response. The representation can be JSON, HTML, or a redirect.