Skip to main content
POST
Begin passwordless passkey login

Authorizations

Authorization
string
header
required

Session JWT (from register/login) or API key (pk_...). X-API-Key: <token> is accepted as an alternative header.

Body

application/json
org
string
required

Response

WebAuthn assertion options + challenge id.

Last modified on July 19, 2026