PasskeyAuthenticationApi
All URIs are relative to https://business.apis.kesk.app/v1
| Method | HTTP request | Description |
|---|---|---|
| completePasskeyAuthentication | POST /passkeys/authenticate/complete | Complete passkey authentication |
| completePasskeyRegistration | POST /passkeys/register/complete | Complete passkey registration |
| deletePasskey | DELETE /passkeys/{id} | Delete registered passkey |
| initiatePasskeyAuthentication | POST /passkeys/authenticate/initiate | Initiate passkey authentication |
| initiatePasskeyRegistration | POST /passkeys/register/initiate | Initiate passkey registration |
| listPasskeys | GET /passkeys | List user’s registered passkeys |
completePasskeyAuthentication
LoginSuccessResponse completePasskeyAuthentication(PasskeyAuthenticationResponse)
Complete passkey authentication
Verifies the authenticator’s signature and completes the login process. Validates the cryptographic assertion against the stored public key and issues a JWT token upon success, granting the user access to their account.
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| PasskeyAuthenticationResponse | PasskeyAuthenticationResponse | Authentication response containing authenticator assertion |
Return type
Authorization
No authorization required
HTTP request headers
- Content-Type: application/json; charset=utf-8
- Accept: application/json; charset=utf-8
completePasskeyRegistration
PasskeyInfo completePasskeyRegistration(PasskeyRegistrationResponse)
Complete passkey registration
Verifies the authenticator’s response and stores the new passkey credential. Validates the cryptographic attestation from the client and persists the public key for future authentication. Returns the registered passkey details.
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| PasskeyRegistrationResponse | PasskeyRegistrationResponse | Registration response containing authenticator attestation |
Return type
Authorization
HTTP request headers
- Content-Type: application/json; charset=utf-8
- Accept: application/json; charset=utf-8
deletePasskey
EmptyResponse deletePasskey(id)
Delete registered passkey
Removes a specific passkey from the user’s account authentication methods. Users should maintain multiple passkeys to prevent account lockout. This operation is permanent and requires re-registration to restore the passkey.
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| id | Long | Unique identifier of the passkey to delete | [default to null] |
Return type
Authorization
HTTP request headers
- Content-Type: Not defined
- Accept: application/json; charset=utf-8
initiatePasskeyAuthentication
PasskeyAuthenticationChallengeResponse initiatePasskeyAuthentication(PasskeyAuthenticationRequest)
Initiate passkey authentication
Starts the WebAuthn authentication ceremony by generating a cryptographic challenge. Returns challenge data and allowed credentials that the client uses to prompt the user’s authenticator for signature-based authentication without a password.
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| PasskeyAuthenticationRequest | PasskeyAuthenticationRequest | Authentication request containing user identifier |
Return type
PasskeyAuthenticationChallengeResponse
Authorization
No authorization required
HTTP request headers
- Content-Type: application/json; charset=utf-8
- Accept: application/json; charset=utf-8
initiatePasskeyRegistration
PasskeyRegistrationChallengeResponse initiatePasskeyRegistration(PasskeyRegistrationRequest)
Initiate passkey registration
Starts the WebAuthn registration ceremony by generating a cryptographic challenge. Returns challenge data and registration options that the client uses to create a new passkey credential with the user’s authenticator (device biometrics or security key).
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| PasskeyRegistrationRequest | PasskeyRegistrationRequest | Registration request containing device information |
Return type
PasskeyRegistrationChallengeResponse
Authorization
HTTP request headers
- Content-Type: application/json; charset=utf-8
- Accept: application/json; charset=utf-8
listPasskeys
PaginatedResponse_PasskeyInfo listPasskeys(page, per_page)
List user’s registered passkeys
Retrieves all passkeys registered to the authenticated user’s account. Returns device names, creation dates, and last usage information for each registered passkey to help users manage their authentication methods.
Parameters
| Name | Type | Description | Notes |
|---|---|---|---|
| page | Integer | [optional] [default to null] | |
| per_page | Integer | [optional] [default to null] |
Return type
Authorization
HTTP request headers
- Content-Type: Not defined
- Accept: application/json; charset=utf-8