Skip to content

Finish WebAuthn Login

POST
/api/v1/login/webauthn/finish
curl --request POST \
--url https://api.spartanauth.com/api/v1/login/webauthn/finish \
--header 'Content-Type: application/json' \
--data '{ "username": "example", "id": "example", "type": "example", "rawID": "example", "clientExtensionResults": { "additionalProperty": "example" }, "response": { "clientDataJSON": "example", "authenticatorData": "example", "signature": "example", "userHandle": "example" }, "transactionID": "example", "sectorID": "example" }'

Verifies the browser’s WebAuthn assertion for the transaction and issues a JWT for the user on success. Public endpoint and must be called with the transactionID returned by the begin step.

Media type application/json
object
username
optional - required if initializing a new challenge flow
string
id
string
type
string
rawID
string format: byte
clientExtensionResults
object
key
additional properties
string format: byte
response
object
clientDataJSON
string format: byte
authenticatorData
string format: byte
signature
string format: byte
userHandle
string format: byte
transactionID
optional
string
sectorID
string
Example generated
{
"username": "example",
"id": "example",
"type": "example",
"rawID": "example",
"clientExtensionResults": {
"additionalProperty": "example"
},
"response": {
"clientDataJSON": "example",
"authenticatorData": "example",
"signature": "example",
"userHandle": "example"
},
"transactionID": "example",
"sectorID": "example"
}

A successful response.

Media type application/json
object
transactionID
string
status
string
default: SUCCESS
Allowed values: SUCCESS UNAUTHENTICATED FORBIDDEN
challengeType
string
token
string
Example
{
"status": "SUCCESS"
}

An unexpected error response.

Media type application/json
object
code
integer format: int32
message
string
details
Array<object>
object
@type
string
key
additional properties
Example generated
{
"code": 1,
"message": "example",
"details": [
{
"@type": "example"
}
]
}