Passport
  • 👩‍💻Welcome
  • How Passport Works
    • Overview
    • Background
      • Threshold Cryptography
      • Secure Multi-Party Computation
      • Distributed Architecture
      • Secure Enclaves
    • In Depth
      • Under the Hood
      • User Flows and Account Controls
      • The Halides Model
      • End-to-End Encryption
      • Security
      • Node Operation
  • guides and examples
    • Getting Started
    • Quickstarts and Examples
      • Passkey Account
      • Clerk Auth
      • Lambda Quickstart
  • Authentication
    • Overview
    • Configuring your scope
    • Passkeys
      • Registration
        • Register using SDK
        • Register using API
          • Initiate Registration
          • Complete Registration
      • Authentication
        • Authenticating with SDK
        • Authenticating with API
          • Initiate Authentication
          • Complete Authentication
    • Developer Owned Auth
      • Registration
        • Register using SDK
        • Register using API
          • Delegate Registration
  • Wallet Operations
    • Overview
    • Passkeys Signer
      • Sign Message
        • Sign Message SDK
        • Sign Message API
      • Sign Transaction
        • Sign Transaction SDK
        • Sign Transaction API
    • DOA Signer
      • Sign Message
        • Sign Message SDK
        • Sign Message API
      • Sign Transaction
        • Sign Transaction SDK
        • Sign Transaction API
    • Viem Support
  • Programmability
    • Overview
    • Passport Lambda
    • Lambda Functions
      • Create Lambda
        • Create Lambda SDK
        • Create Lambda API
      • Execute Lambda
        • Execute Lambda SDK
        • Execute Lambda API
      • List Lambda
        • List Lambda SDK
        • List Lambda API
  • Appendix
    • Moving to Mainnet
    • State Of The Network
    • Generating DOA Keys
    • API Request Setup
      • Unauthenticated Requests
      • Authenticated Requests
Powered by GitBook
On this page
  1. Authentication
  2. Passkeys

Authentication

PreviousComplete RegistrationNextAuthenticating with SDK

Last updated 1 year ago

Two Methods of Passkey Authentication

1. Session-Based Authentication

In this method, you authenticate with passkeys once to obtain a time-limited JWT (JSON Web Token). This token can then be used for subsequent actions such as personal_sign, sign_transaction, and other secure actions. This method is efficient because it requires only one authentication step per session, reducing the need for repeated verifications.

2. Direct Passkey Authentication for Each Request

This method requires you to authenticate using a passkey with every single request. It is more secure since each request is independently authenticated, but it can be less efficient due to the repetitive nature of authentication.

If you are implementing the session-based authentication (Flow 1), follow the below guidance. For details on implementing the direct passkey authentication with each request (Flow 2), refer to the specific methods.

The above gives a high level view on how Passkey Authentication works with Passport. You can followAuthenticating with SDK to have most of these details abstracted away. Currently we only have a TypeScript SDK, so you can also follow Authenticating with API if preferred.

Passport Passkey Authentication Flow