Passwordless Authentication (Email Magic Link)

Start passwordless authentication to register or log in a user.

If the provided email does not exist in the system, a new passwordless user account will be created. If the email already exists, the API will log the user into their existing passwordless account.

Authentication Modes
This endpoint supports two authentication modes, controlled by feature flags:

Magic Link (feature flag: magic_link): When enabled, the email includes a clickable link with embedded tokens

OTP (feature flag: otp): When enabled, the email includes a 6-character OTP code and the response includes otp_session_id

Both modes can be enabled simultaneously, giving users multiple authentication options.

Magic Link Mode
When the magic_link feature flag is enabled, the email contains a redirect URL with tokens:

https://your-frontend.com/?token=<magic-link-token>&ejento_access_token=<ejento-token>&x=1

Users can click the link to be automatically authenticated, or extract the tokens from the URL.

OTP Mode
When the otp feature flag is enabled:

The email includes a 6-character alphanumeric OTP code

The API response includes an otp_session_id

Users must call /v2/users/verify-otp with both the code and session ID to obtain tokens

Request Body

email (required): Email address to authenticate/register

Authorization

Required: No

Returns

created (boolean): true if a new user was created, false if logging into existing account

otp_session_id (UUID, optional): Included only when OTP mode is enabled. Use this with the OTP code to verify.

Current Version

2.0.0

curl --location -g --request POST 'https:///auth-service/api/v2/users/passwordless-auth' \ --header 'Ocp-Apim-Subscription-Key: ' \ --header 'Authorization: Bearer ' \ --header 'Content-Type: application/json' \ --data-raw '{ "email": "string" }'

Passwordless Authentication (Email Magic Link)

Request

Responses