Xefi
Laravel Passkey API

WebAuthn Passkey API for Laravel.

A ready-to-use REST API for WebAuthn passkey authentication in your Laravel application. Drop-in endpoints for registration, verification, and authentication — no custom controllers needed.

Get started

View on GitHub

Terminal
composer require xefi/laravel-passkey-api
php artisan vendor:publish --tag=passkey-migrations
php artisan migrate

Everything you need for passwordless auth

    WebAuthn / FIDO2

    Full WebAuthn specification support — hardware security keys, Touch ID, Face ID, Windows Hello, and more.

    Token Authentication

    Returns an API token on successful passkey authentication, ready to use with your preferred authentication guard.

    Ready-to-use API

    Drop-in REST API endpoints for registration, verification, and authentication. No custom controllers needed.

    Configurable

    Customize the authentication middleware, challenge timeout, and challenge length through a simple configuration file.

    Eloquent Model

    Passkey is stored in your database using an Eloquent model. The HasPasskeys trait wires everything up automatically.

    ES256 & RS256

    Supports both ES256 (Elliptic Curve) and RS256 (RSA) public key algorithms for maximum authenticator compatibility.

Ready to go passwordless?

Add passkey authentication to your Laravel app in a few commands.
Get startedView on GitHub