Enroll Verified Authenticator

POST

users

{userId}

authenticators

curl --request POST \
  --url https://api.authsignal.com/v1/users/{userId}/authenticators \
  --header 'Content-Type: application/json' \
  --data '{
  "verificationMethod": "SMS",
  "phoneNumber": "+123456789012"
}'

{
  "authenticator": {
    "userAuthenticatorId": "4efd2d0d-3278-4e03-8143-d9a0850bebc0",
    "verificationMethod": "PASSKEY",
    "username": "jane.smith@authsignal.com",
    "displayName": "Jane Smith",
    "createdAt": "2024-05-13T04:59:02.640Z",
    "lastVerifiedAt": "2024-07-13T02:43:37.640Z",
    "verifiedAt": "2024-05-13T04:59:17.640Z",
    "webauthnCredential": {
      "credentialId": "71273a99-4a7b-47d4-82ab-9ea72b8f0a72",
      "deviceId": "d5a13d2d-8c34-4c90-938b-d8c6e3a88c5d",
      "name": "iCloud Keychain",
      "aaguid": "fbfc3007-154e-4ecc-8c0b-6e020557d7bd",
      "aaguidMapping": {
        "name": "iCloud Keychain",
        "svgIconDark": "data:image/svg+xml;base64...",
        "svgIconLight": "data:image/svg+xml;base64..."
      },
      "credentialBackedUp": true,
      "credentialDeviceType": "multiDevice",
      "authenticatorAttachment": "platform"
    }
  },
  "recoveryCodes": [
    "<string>"
  ]
}

Path Parameters

userId

string

required

The ID of the user.

Body

application/json

verificationMethod

enum<string>

required

The verification method of the authenticator being enrolled.

Available options:

EMAIL_MAGIC_LINK,

EMAIL_OTP,

SMS,

AUTHENTICATOR_APP

string

The user's email address. Required for EMAIL_MAGIC_LINK and EMAIL_OTP.

phoneNumber

string

The user's phone number in E.164 format. Required for SMS.

otpUri

string

The formatted OTP URI. Required for AUTHENTICATOR_APP.

oobChannel

enum<string>

Deprecated - use 'verificationMethod' instead.

Available options:

EMAIL_MAGIC_LINK,

EMAIL_OTP,

SMS

Response

200

application/json

authenticator

object

authenticator.userAuthenticatorId

string

required

authenticator.verificationMethod

enum<string>

required

Available options:

SMS,

AUTHENTICATOR_APP,

EMAIL_MAGIC_LINK,

EMAIL_OTP,

PUSH,

SECURITY_KEY,

PASSKEY,

VERIFF,

IPROOV,

PALM_BIOMETRICS_RR,

IDVERSE

authenticator.createdAt

string

required

authenticator.email

string

authenticator.phoneNumber

string

authenticator.username

string

authenticator.displayName

string

authenticator.verifiedAt

string

authenticator.lastVerifiedAt

string

authenticator.previousSmsChannel

enum<string>

The channel that was last used by the user to complete an SMS challenge. Only defined if the verification method is SMS.

Available options:

DEFAULT,

WHATSAPP

authenticator.webauthnCredential

object

authenticator.webauthnCredential.credentialId

string

authenticator.webauthnCredential.deviceId

string

authenticator.webauthnCredential.name

string

The name of the passkey. Defaults to aaguidMapping.name if available.

authenticator.webauthnCredential.aaguid

string

authenticator.webauthnCredential.aaguidMapping

object

authenticator.webauthnCredential.credentialBackedUp

boolean

authenticator.webauthnCredential.credentialDeviceType

enum<string>

Available options:

singleDevice,

multiDevice

authenticator.webauthnCredential.authenticatorAttachment

enum<string>

Available options:

cross-platform,

platform

authenticator.webauthnCredential.parsedUserAgent

object

authenticator.deviceName

string

The name of the device (e.g. 'iPhone 16 Pro'). Only used for PUSH verification methods.

Example:

{
  "userAuthenticatorId": "4efd2d0d-3278-4e03-8143-d9a0850bebc0",
  "verificationMethod": "PASSKEY",
  "username": "jane.smith@authsignal.com",
  "displayName": "Jane Smith",
  "createdAt": "2024-05-13T04:59:02.640Z",
  "lastVerifiedAt": "2024-07-13T02:43:37.640Z",
  "verifiedAt": "2024-05-13T04:59:17.640Z",
  "webauthnCredential": {
    "credentialId": "71273a99-4a7b-47d4-82ab-9ea72b8f0a72",
    "deviceId": "d5a13d2d-8c34-4c90-938b-d8c6e3a88c5d",
    "name": "iCloud Keychain",
    "aaguid": "fbfc3007-154e-4ecc-8c0b-6e020557d7bd",
    "aaguidMapping": {
      "name": "iCloud Keychain",
      "svgIconDark": "data:image/svg+xml;base64...",
      "svgIconLight": "data:image/svg+xml;base64..."
    },
    "credentialBackedUp": true,
    "credentialDeviceType": "multiDevice",
    "authenticatorAttachment": "platform"
  }
}

recoveryCodes

string[]

Get AuthenticatorsGets a list of the user's currently enrolled authenticators.

curl --request POST \
  --url https://api.authsignal.com/v1/users/{userId}/authenticators \
  --header 'Content-Type: application/json' \
  --data '{
  "verificationMethod": "SMS",
  "phoneNumber": "+123456789012"
}'

{
  "authenticator": {
    "userAuthenticatorId": "4efd2d0d-3278-4e03-8143-d9a0850bebc0",
    "verificationMethod": "PASSKEY",
    "username": "jane.smith@authsignal.com",
    "displayName": "Jane Smith",
    "createdAt": "2024-05-13T04:59:02.640Z",
    "lastVerifiedAt": "2024-07-13T02:43:37.640Z",
    "verifiedAt": "2024-05-13T04:59:17.640Z",
    "webauthnCredential": {
      "credentialId": "71273a99-4a7b-47d4-82ab-9ea72b8f0a72",
      "deviceId": "d5a13d2d-8c34-4c90-938b-d8c6e3a88c5d",
      "name": "iCloud Keychain",
      "aaguid": "fbfc3007-154e-4ecc-8c0b-6e020557d7bd",
      "aaguidMapping": {
        "name": "iCloud Keychain",
        "svgIconDark": "data:image/svg+xml;base64...",
        "svgIconLight": "data:image/svg+xml;base64..."
      },
      "credentialBackedUp": true,
      "credentialDeviceType": "multiDevice",
      "authenticatorAttachment": "platform"
    }
  },
  "recoveryCodes": [
    "<string>"
  ]
}

API Reference

Server API

Client API

Management API

Call Connect API

Terminal API

Enroll Verified Authenticator

Path Parameters

Body

Response