Skip to main content

Introduction

After authenticating using frequently-used methods like SMS OTP, Email Authentication, or OAuth (e.g., Google), users will make requests to 0xkey with a resulting API key. Each API key includes a Credential field specifying its type and public key. This Credential type can be used to identify how the API key was issued and which specific authentication method was used. Passkeys, known as Authenticators within the context of 0xkey, also have the same Credential field and are equally distinguished by the credential type.

Obtaining an API key’s credential type and public key

To obtain an API key’s credential type and public key you can use the GetAPIKey query. The API Key fields will be returned from this call and the credential type and public_key fields will be in the response. This will return an object that looks like:

Credential types

The table below describes all of the different credential types and what authentication methods correspond to that credential type