> ## Documentation Index > Fetch the complete documentation index at: https://docs.authsignal.com/llms.txt > Use this file to discover all available pages before exploring further. # Verify Passkey Authentication > Finish the process of authenticating with an existing passkey authenticator. ## OpenAPI ````yaml client-api POST /verify/passkey openapi: 3.0.0 info: description: Authsignal's Client API. version: 1.0.0 title: Client API termsOfService: https://www.authsignal.com/legal/terms-of-service contact: email: hello@authsignal.com servers: - url: https://api.authsignal.com/v1/client - url: https://au.api.authsignal.com/v1/client - url: https://eu.api.authsignal.com/v1/client - url: https://ca.api.authsignal.com/v1/client security: - bearerAuth: [] tags: - name: User authenticators description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: SMS description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: WhatsApp description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: Email Magic Link description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: Email OTP description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: Authenticator App description: '' externalDocs: description: Find out more url: https://docs.authsignal.com - name: Passkeys description: '' externalDocs: description: Find out more url: https://docs.authsignal.com externalDocs: description: Find out more about Authsignal url: https://docs.authsignal.com paths: /verify/passkey: post: tags: - Passkeys summary: Verify Authentication description: >- Finish the process of authenticating with an existing passkey authenticator. operationId: verifyAuthentication requestBody: content: application/json: schema: type: object properties: challengeId: type: string description: >- The ID of the passkey challenge returned when generating authentication options. authenticationCredential: type: object description: >- The authentication credential object, based on https://w3c.github.io/webauthn/#dictdef-authenticationresponsejson. deviceId: type: string description: The ID of the device. required: - challengeId - authenticationCredential responses: '200': description: OK content: application/json: schema: type: object properties: isVerified: type: boolean description: >- True if the passkey challenge was valid and the device was authenticated successfully. accessToken: type: string description: >- A token which can be used to validate the passkey challenge server-side. required: - isVerified '400': $ref: '#/components/responses/InvalidRequest' '401': $ref: '#/components/responses/Unauthorized' '404': $ref: '#/components/responses/NotFound' components: responses: InvalidRequest: description: Invalid Request content: application/json: schema: $ref: '#/components/schemas/Error' Unauthorized: description: Unauthorized content: application/json: schema: $ref: '#/components/schemas/ErrorWithCode' NotFound: description: Not Found content: application/json: schema: $ref: '#/components/schemas/Error' schemas: Error: type: object properties: error: type: string errorDescription: type: string required: - error ErrorWithCode: type: object properties: error: type: string errorDescription: type: string errorCode: type: string required: - error securitySchemes: bearerAuth: type: http scheme: bearer bearerFormat: JWT description: >- Use a short-lived token obtained from the Server API's Track Action endpoint. The token is valid for 10 minutes and should be passed in the Authorization header as 'Bearer {token}'. ````