supertokens · porcellus · Aug 7, 2025 · Jul 29, 2025 · Aug 6, 2025 · Aug 7, 2025
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -11,9 +11,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 -   Added support for auto inference of request/response body types along with query parameter types in querier methods.
 -   Adds a script to generate the types based on the FDI openapi spec.
+-   Include the `shouldTryLinkingToSessionUser` flag in the `Webauthn` recipe methods
 -   Update supported FDI versions and package version
 
-
 ## [0.15.0] - 2025-03-20
 
 -   Added `Webauthn` recipe to support logins using WebAuthN (Passkeys)

diff --git a/bundle/dateprovider.0d042cc9e3b4182ac1f8.js → bundle/dateprovider.d3b8bc6ba64e37c53277.js b/bundle/dateprovider.0d042cc9e3b4182ac1f8.js → bundle/dateprovider.d3b8bc6ba64e37c53277.js
diff --git a/bundle/emailpassword.0777370b1565b0ce79d6.js b/bundle/emailpassword.0777370b1565b0ce79d6.js
diff --git a/bundle/emailpassword.b12517b7c5f63467b4b2.js → bundle/emailpassword.87aa44c54a349bab7e8a.js b/bundle/emailpassword.b12517b7c5f63467b4b2.js → bundle/emailpassword.87aa44c54a349bab7e8a.js
diff --git a/bundle/emailverification.9db2b314087603b5a7ce.js b/bundle/emailverification.9db2b314087603b5a7ce.js
diff --git a/...emailverification.18173ffb0e0277841329.js → ...emailverification.d7b2490194eaffe300ed.js b/...emailverification.18173ffb0e0277841329.js → ...emailverification.d7b2490194eaffe300ed.js
diff --git a/bundle/multifactorauth.5c1d9b591eda1a259829.js b/bundle/multifactorauth.5c1d9b591eda1a259829.js
diff --git a/...e/multifactorauth.cfa99de4222c072d9a63.js → ...e/multifactorauth.c0e7edc238b4a4ea47e1.js b/...e/multifactorauth.cfa99de4222c072d9a63.js → ...e/multifactorauth.c0e7edc238b4a4ea47e1.js
diff --git a/bundle/multitenancy.d81d392b5f3024b27736.js → bundle/multitenancy.29bb38063483e24c7700.js b/bundle/multitenancy.d81d392b5f3024b27736.js → bundle/multitenancy.29bb38063483e24c7700.js
diff --git a/bundle/multitenancy.b2eb625ac855c0f20933.js b/bundle/multitenancy.b2eb625ac855c0f20933.js
diff --git a/bundle/oauth2provider.193a322e0969b7aad4eb.js b/bundle/oauth2provider.193a322e0969b7aad4eb.js
diff --git a/...le/oauth2provider.7eb2eba141671d0cc95b.js → ...le/oauth2provider.912216c8a94cb849ac4f.js b/...le/oauth2provider.7eb2eba141671d0cc95b.js → ...le/oauth2provider.912216c8a94cb849ac4f.js
diff --git a/bundle/passwordless.f03b1f16834d3838ac47.js → bundle/passwordless.74df2a74b8603363788f.js b/bundle/passwordless.f03b1f16834d3838ac47.js → bundle/passwordless.74df2a74b8603363788f.js
diff --git a/bundle/passwordless.c1f937cd504b61f83880.js b/bundle/passwordless.c1f937cd504b61f83880.js
diff --git a/bundle/session.7bfd8f38201d22e5d723.js → bundle/session.a8e0a78f6cb1d6d2e6ab.js b/bundle/session.7bfd8f38201d22e5d723.js → bundle/session.a8e0a78f6cb1d6d2e6ab.js
diff --git a/bundle/supertokens.e5ca0013be9ff3a3ba39.js → bundle/supertokens.13428cf57599b0bfe2ab.js b/bundle/supertokens.e5ca0013be9ff3a3ba39.js → bundle/supertokens.13428cf57599b0bfe2ab.js
diff --git a/bundle/supertokens.681438d7dda2f4686c4d.js b/bundle/supertokens.681438d7dda2f4686c4d.js
diff --git a/bundle/thirdparty.1240cc4fa7b75fea6a4d.js b/bundle/thirdparty.1240cc4fa7b75fea6a4d.js
diff --git a/bundle/thirdparty.0aeaef96dc75a0809bf5.js → bundle/thirdparty.fbfddad4316c0c36cf56.js b/bundle/thirdparty.0aeaef96dc75a0809bf5.js → bundle/thirdparty.fbfddad4316c0c36cf56.js
diff --git a/bundle/totp.53dc276a6693f0c42c30.js b/bundle/totp.53dc276a6693f0c42c30.js
diff --git a/bundle/totp.88d761fe496914fed780.js → bundle/totp.568f9a790365064d3f28.js b/bundle/totp.88d761fe496914fed780.js → bundle/totp.568f9a790365064d3f28.js
diff --git a/bundle/userroles.0262e05cda6b73697e36.js → bundle/userroles.57be4b72f72d66eca336.js b/bundle/userroles.0262e05cda6b73697e36.js → bundle/userroles.57be4b72f72d66eca336.js
diff --git a/bundle/website.41a7468e8fd759f30df0.js b/bundle/website.41a7468e8fd759f30df0.js
diff --git a/bundle/website.c7860dc40a39421c659b.js b/bundle/website.c7860dc40a39421c659b.js
diff --git a/lib/build/recipe/webauthn/index.d.ts b/lib/build/recipe/webauthn/index.d.ts
diff --git a/lib/build/recipe/webauthn/recipeImplementation.js b/lib/build/recipe/webauthn/recipeImplementation.js
diff --git a/lib/build/recipe/webauthn/types.d.ts b/lib/build/recipe/webauthn/types.d.ts
diff --git a/lib/ts/recipe/webauthn/index.ts b/lib/ts/recipe/webauthn/index.ts
@@ -155,6 +155,7 @@ export default class RecipeWrapper {
     static signUp(input: {
         webauthnGeneratedOptionsId: string;
         credential: RegistrationResponseJSON;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }): Promise<
@@ -197,6 +198,7 @@ export default class RecipeWrapper {
     static signIn(input: {
         webauthnGeneratedOptionsId: string;
         credential: AuthenticationResponseJSON;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }): Promise<
@@ -376,6 +378,7 @@ export default class RecipeWrapper {
      */
     static registerCredentialWithSignUp(input: {
         email: string;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }): Promise<
@@ -427,7 +430,11 @@ export default class RecipeWrapper {
      *
      * @returns `{ status: "OK", ...}` if successful along a description of the user details (id, etc.) and email
      */
-    static authenticateCredentialWithSignIn(input: { options?: RecipeFunctionOptions; userContext: any }): Promise<
+    static authenticateCredentialWithSignIn(input: {
+        options?: RecipeFunctionOptions;
+        userContext: any;
+        shouldTryLinkingWithSessionUser?: boolean;
+    }): Promise<
         | {
               status: "OK";
               user: User;

diff --git a/lib/ts/recipe/webauthn/recipeImplementation.ts b/lib/ts/recipe/webauthn/recipeImplementation.ts
@@ -103,7 +103,13 @@ export default function getRecipeImplementation(
                 fetchResponse,
             };
         },
-        signUp: async function ({ webauthnGeneratedOptionsId, credential, options, userContext }) {
+        signUp: async function ({
+            webauthnGeneratedOptionsId,
+            credential,
+            options,
+            userContext,
+            shouldTryLinkingWithSessionUser,
+        }) {
             const { jsonBody, fetchResponse } = await querier.post(
                 {
                     path: "/<tenantId>/webauthn/signup",
@@ -118,6 +124,7 @@ export default function getRecipeImplementation(
                     body: {
                         webauthnGeneratedOptionsId,
                         credential,
+                        shouldTryLinkingWithSessionUser,
                     },
                 },
                 Querier.preparePreAPIHook({
@@ -138,7 +145,13 @@ export default function getRecipeImplementation(
                 fetchResponse,
             };
         },
-        signIn: async function ({ webauthnGeneratedOptionsId, credential, options, userContext }) {
+        signIn: async function ({
+            webauthnGeneratedOptionsId,
+            credential,
+            options,
+            userContext,
+            shouldTryLinkingWithSessionUser,
+        }) {
             const { jsonBody, fetchResponse } = await querier.post(
                 {
                     path: "/<tenantId>/webauthn/signin",
@@ -153,6 +166,7 @@ export default function getRecipeImplementation(
                     body: {
                         webauthnGeneratedOptionsId,
                         credential,
+                        shouldTryLinkingWithSessionUser,
                     },
                 },
                 Querier.preparePreAPIHook({
@@ -303,7 +317,12 @@ export default function getRecipeImplementation(
                 registrationResponse,
             };
         },
-        registerCredentialWithSignUp: async function ({ email, options, userContext }) {
+        registerCredentialWithSignUp: async function ({
+            email,
+            shouldTryLinkingWithSessionUser,
+            options,
+            userContext,
+        }) {
             // Get the registration options by using the passed email ID.
             const registrationOptions = await this.getRegisterOptions({ options, userContext, email });
             if (registrationOptions?.status !== "OK") {
@@ -330,6 +349,7 @@ export default function getRecipeImplementation(
             return await this.signUp({
                 webauthnGeneratedOptionsId: registrationOptions.webauthnGeneratedOptionsId,
                 credential: registerCredentialResponse.registrationResponse,
+                shouldTryLinkingWithSessionUser,
                 options,
                 userContext,
             });
@@ -357,7 +377,7 @@ export default function getRecipeImplementation(
                 authenticationResponse: authenticationResponse,
             };
         },
-        authenticateCredentialWithSignIn: async function ({ options, userContext }) {
+        authenticateCredentialWithSignIn: async function ({ shouldTryLinkingWithSessionUser, options, userContext }) {
             // Make a call to get the sign in options using the entered email ID.
             const signInOptions = await this.getSignInOptions({ options, userContext });
             if (signInOptions?.status !== "OK") {
@@ -379,6 +399,7 @@ export default function getRecipeImplementation(
             return await this.signIn({
                 webauthnGeneratedOptionsId: signInOptions.webauthnGeneratedOptionsId,
                 credential: authenticateCredentialResponse.authenticationResponse,
+                shouldTryLinkingWithSessionUser,
                 options: options,
                 userContext: userContext,
             });

diff --git a/lib/ts/recipe/webauthn/types.ts b/lib/ts/recipe/webauthn/types.ts
@@ -152,6 +152,7 @@ export type RecipeInterface = {
     signUp: (input: {
         webauthnGeneratedOptionsId: string;
         credential: RegistrationResponseJSON;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }) => Promise<
@@ -175,6 +176,7 @@ export type RecipeInterface = {
     signIn: (input: {
         webauthnGeneratedOptionsId: string;
         credential: AuthenticationResponseJSON;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }) => Promise<
@@ -256,6 +258,7 @@ export type RecipeInterface = {
     >;
     registerCredentialWithSignUp: (input: {
         email: string;
+        shouldTryLinkingWithSessionUser?: boolean;
         options?: RecipeFunctionOptions;
         userContext: any;
     }) => Promise<
@@ -284,7 +287,11 @@ export type RecipeInterface = {
         | { status: "FAILED_TO_REGISTER_USER"; error: any }
         | { status: "WEBAUTHN_NOT_SUPPORTED"; error: any }
     >;
-    authenticateCredentialWithSignIn: (input: { options?: RecipeFunctionOptions; userContext: any }) => Promise<
+    authenticateCredentialWithSignIn: (input: {
+        shouldTryLinkingWithSessionUser?: boolean;
+        options?: RecipeFunctionOptions;
+        userContext: any;
+    }) => Promise<
         | {
               status: "OK";
               user: User;