Complete the Challenge
Instance
Complete the Challenge
Sends the result of the passkey resolution (WebAuthn assertion) to complete the instance connection
POST
Complete the Challenge
Overview
This method is part of the instance connection flow via Passkey (WebAuthn), being the final step of this process:- The QR Code endpoint is called and returns a
challenge. - This challenge is resolved on the device / authenticator (a procedure performed outside of Z-API, and that does not depend on our API).
- The result of this resolution (the WebAuthn assertion) is sent to this endpoint, so the instance can complete the connection.
The challenge resolution happens directly between the user’s device and the authenticator (Passkey), outside the Z-API ecosystem. This endpoint only receives the already processed result.With this new WhatsApp authentication in mind, Z-API created an extension called Z-API Connector, specifically to make this Passkey validation easier.
Attributes
Required
Your instance ID. Available in the Z-API panel under Instances.
Your Z-API instance token.
Required
Identifier of the credential generated by the authenticator
Raw identifier of the credential
Credential type. Always “public-key”
WebAuthn signature data returned by the authenticator
Optional
Client extensions returned by the authenticator
Request Body
Response
200
Returns the result of the assertion processing by the instance. There are three possible variations: Success:Responses with
success: false indicate that the assertion payload is malformed — the request body must be corrected and resent. These are not Z-API infrastructure errors.400
Returned in the following cases:- Instance not found for the
instanceId+tokenpair: