Create setup-token WebAuthn registration options.
curl --request POST \ --url https://auth.example.com/api/admin/setup-token/passkey/options \ --header 'Content-Type: application/json' \ --data '{ "token": "admin_setup_token_123", "rp_id": "admin.example.com" }'Validates an Admin UI setup token and returns WebAuthn registration options plus a challenge identifier.
Request Body required
Section titled “Request Body required ”object
Example
{ "token": "admin_setup_token_123", "rp_id": "admin.example.com"}Responses
Section titled “ Responses ”Successful JSON response.
object
WebAuthn options generated by @simplewebauthn/server.
object
Example
{ "options": { "challenge": "challenge", "rp": { "name": "Authrim", "id": "admin.example.com" }, "user": { "id": "admin_123", "displayName": "Admin User" } }, "challenge_id": "challenge_123"}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}