POST
/
api
/
v1
/
passkeys
/
externally-signed-account
Get externally signed account from authenticator response
curl --request POST \
  --url https://developer-api.squads.so/api/v1/passkeys/externally-signed-account \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --header 'x-squads-network: <x-squads-network>' \
  --data '{
  "authenticatorResponse": {},
  "metaInfo": {
    "redirectUrl": "<string>"
  }
}'
{
  "externallySignedAccount": "<string>",
  "sessionKey": {
    "key": "<string>",
    "expiration": 123
  },
  "redirectUrl": "<string>"
}

Passkeys are currently only live on devnet. Mainnet support is coming soon.

Retrieves an externally signed account from a WebAuthn authenticator response. This is an advanced endpoint for companies that need to host passkey flows on their own domain.

For most applications, use the hosted UI approach instead.

Key Notes

  • Custom Domain: Use this endpoint when hosting passkey flows on your own domain
  • Complete Response Required: Submit the full WebAuthn authenticator response object
  • Existing Passkeys: Works with previously registered passkeys

For detailed implementation, see the Custom Domain guide.

Authorizations

Authorization
string
header
required

UUID-based API key provided by Squads

Headers

x-squads-network
enum<string>
required

Specifies the network for the API request

Available options:
mainnet,
devnet

Body

application/json

Response

200
application/json

Externally signed account retrieved successfully

The response is of type object.