Skip to main content

POST /auth/face/register

Registers the user's face biometric with FaceTec for step-up authentication. This is a one-time operation and cannot be updated or overwritten.

Used in flow: Setup before saving keyshare backup (required for future recovery)

Authentication: JWT (Access Token)

Request

Authorization: Bearer <access_token>
Content-Type: application/json
{
  "face_scan": "base64_encoded_face_scan",
  "audit_trail_image": "base64_encoded_image",
  "low_quality_audit_trail_image": "base64_encoded_image",
  "user_agent": "Mozilla/5.0..."
}
FieldTypeRequiredDescription
face_scanstringYesBase64-encoded face scan from FaceTec SDK
audit_trail_imagestringYesBase64-encoded high-quality audit image
low_quality_audit_trail_imagestringYesBase64-encoded low-quality audit image
user_agentstringYesClient's user-agent (required by FaceTec)

Response

201 Created
{
  "message": "Face enrolled successfully",
  "registered_at": "2025-01-15T10:30:00Z"
}