API Authorization
Identity & Access Management
Wallets & Transactions
Management
Webhooks
Create Credential Challenge With Code
curl --request POST \
--url https://api.dfns.io/auth/credentials/code/init \
--header 'Content-Type: application/json' \
--data '
{
"credentialKind": "Fido2",
"code": "<string>"
}
'{
"kind": "Fido2",
"user": {
"id": "<string>",
"displayName": "<string>",
"name": "<string>"
},
"challengeIdentifier": "<string>",
"challenge": "<string>",
"authenticatorSelection": {
"residentKey": "required",
"requireResidentKey": true,
"userVerification": "required",
"authenticatorAttachment": "platform"
},
"attestation": "none",
"pubKeyCredParams": [
{
"type": "public-key",
"alg": 123
}
],
"excludeCredentials": [
{
"type": "public-key",
"id": "cr-6uunn-bm6ja-f6rmod5kqrk5rbel"
}
],
"temporaryAuthenticationToken": "<string>",
"rp": {
"id": "<string>",
"name": "<string>"
}
}Create Credential Challenge With Code
Part of the flow Create Credential With Code.
Creates a credential challenge using a one time code-time-code. This challenge must then be signed by the new credential, before finalizing the flow.
POST
/
auth
/
credentials
/
code
/
init
Create Credential Challenge With Code
curl --request POST \
--url https://api.dfns.io/auth/credentials/code/init \
--header 'Content-Type: application/json' \
--data '
{
"credentialKind": "Fido2",
"code": "<string>"
}
'{
"kind": "Fido2",
"user": {
"id": "<string>",
"displayName": "<string>",
"name": "<string>"
},
"challengeIdentifier": "<string>",
"challenge": "<string>",
"authenticatorSelection": {
"residentKey": "required",
"requireResidentKey": true,
"userVerification": "required",
"authenticatorAttachment": "platform"
},
"attestation": "none",
"pubKeyCredParams": [
{
"type": "public-key",
"alg": 123
}
],
"excludeCredentials": [
{
"type": "public-key",
"id": "cr-6uunn-bm6ja-f6rmod5kqrk5rbel"
}
],
"temporaryAuthenticationToken": "<string>",
"rp": {
"id": "<string>",
"name": "<string>"
}
}Documentation Index
Fetch the complete documentation index at: https://docs.dfns.co/llms.txt
Use this file to discover all available pages before exploring further.
Authentication
No authentication required.Required Permissions
No authentication required.Body
application/json
Response
200 - application/json
Success
- Fido2/Passkeys
- Public/Private key pair
- Password-protected Key
- Recovery Credentials
- <Deprecated> Password
- <Deprecated> TOTP
Fido2 Credential, also known as Passkeys or WebauthN credential.
Available options:
Fido2 Show child attributes
Show child attributes
Show child attributes
Show child attributes
Identifies the information needed to verify the user's signing certificate; can be one of the following:
- none: indicates no attestation data is required
- indirect: indicates the attestation data should be given, but that it can be generated using an Anonymization CA
- direct: indicates the attestation data must be given and should be generated by the authenticator
- enterprise: indicates the attestation data should include information to uniquely identify the user's device
Available options:
none, indirect, direct, enterprise Show child attributes
Show child attributes
Show child attributes
Show child attributes
@deprecated use challengeIdentifier instead
Show child attributes
Show child attributes
Last modified on May 11, 2026
Was this page helpful?
⌘I
Assistant
Responses are generated using AI and may contain mistakes.