I have an iOS project and am trying to utilize the Auth0 SDK to request a passkey challenge from my application. I am using the Auth0.authentication().passkeySignupChallenge() method but when the https://{myDomain}/passkey/register endpoint is called, I get a 404 saying the endpoint is disabled. I verified my database connection supports passkeys, my plist file has the correct domain and clientId and that I can successfully use the basic signup() method to register a user with username and password. I cant find any passkey api docs, has anyone else encountered this issue? If so, is there anything im not checking for?
Welcome to the Auth0 Community!
I believe that our Native Passkeys for Mobile Applications documentation goes over the use-case you are currently working with. I seems like you will need to make a Post call to /passkey/register to hit the Request Signup Endpoint. Given that you are receiving the error that the endpoint is disabled, can you please double-check that the custom domain is correctly set on your tenant and also that the grant type is enabled for your application, to rule out the possibility that these might interfere.
This being an Early Access feature, minor changes can be expected before General Availability.
In addition, there is a current limitation on the feature that currently allows new user registration with passkeys and passkey challenge using Auth0’s Authentication API, but enrollment operations, like adding a passkey to an existing user, are not yet available and will be made available in later releases.
If the endpoint is still not working for you after checking the above mentioned areas, please let me know and I will reach out to our team to see if we have any ETA or status to share, or if anything can be done in particular to enable the functionality.
Looking forward to your reply!
Gerald
Hi Gerald!
Thank you for this helpful information. I just setup a custom domain and it was successfully verified by Auth0 but there is no option to enable Passkey grant type in my application but I was able to find all the other possible grant types. Im looking to see if theres anything Im missing in my passkey/application settings to be able to see this option.
Hi @gerald.czifra , is there anything special I need to do for my tenant or application to be able to enable the passkey grant? I cant find the option to enable it in the UI and when I try to use the Management API I get the error “Invalid grant types: urn:okta:params:oauth:grant-type:webauthn”. I was able to get a custom domain setup and verified but I am still getting the “endpoint disabled” message in my app.
Thank you,
Ben
I am sorry about the delayed reply to your last messages on this topic, however, Gerald is not available at this time.
As Gerald has mentioned previously, this feature is currently in Early Access, which means it’s features might not yet be enabled for your tenant which would explain why you are not seeing the specific grant or being able to enable it through the Management API. As mentioned in our documentation: Early Access releases may be restricted to a select number of subscribers or rolled out to a subset of tenants (i.e. available only to tenants hosted in Japan). Once this feature is released for general access, you should see all the options mentioned above within your settings and some documentation should be released on the matter.
Kind Regards,
Nik