Hanko · Authentication Profile

Hanko Authentication

Authentication

Hanko secures its APIs with apiKey and http across 2 declared security schemes, as derived from its OpenAPI definitions.

AuthenticationPasskeysWebAuthnFIDO2IdentityOAuthSAMLPasswordlessOpen Source
Methods: apiKey, http Schemes: 2 OAuth flows: API key in: cookie

Security Schemes

BearerApiKeyAuth http
scheme: bearer
CookieAuth apiKey
· in: cookie (hanko)

Source

Authentication Profile

Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/hanko-admin-api-openapi.yml, openapi/hanko-flow-api-openapi.yml, openapi/hanko-public-api-openapi.yml
summary:
  types:
  - apiKey
  - http
  api_key_in:
  - cookie
schemes:
- name: BearerApiKeyAuth
  type: http
  scheme: bearer
  bearerFormat: API Key
  description: Bearer authentication header of the form `Bearer <token>`, where `<token>` is
    your API key. Must only be used when using Hanko Cloud.
  sources:
  - openapi/hanko-admin-api-openapi.yml
  - openapi/hanko-flow-api-openapi.yml
  - openapi/hanko-public-api-openapi.yml
- name: CookieAuth
  type: apiKey
  in: cookie
  parameter: hanko
  sources:
  - openapi/hanko-flow-api-openapi.yml
  - openapi/hanko-public-api-openapi.yml