Passwordless Recipe

Auth Recipe

Passwordless recipe provides ways to authenticate using OTP or link.

Passwordless uses a concept of device (generating deviceId and deviceIdHash) to be able to resend new codes for the same device.

The recipe generates two different codes - UserInputCode and LinkCode. They would be used in the cases of OTP based login and magic link based login respectively.

User is not expected to provide values for UserInputCode and LinkCode and the core will automatically generate values for them. However, user could pass values for them if required.

For email based passwordless login, the user's email will automatically be marked as verified when consuming the code.

Note that consume code operation may be a sign in or sign up operation based on whether the user with the email / phoneNumber exists. The API will return if a new user was created during the process.

Apart from the above, the recipe also provides functions to update email or phoneNumber and code management related functions.