workos · blairworkos · Jun 15, 2026
@@ -7,11 +7,13 @@ export interface AuthenticateWithCodeAndVerifierOptions extends AuthenticateWith
   codeVerifier: string;
   code: string;
   invitationToken?: string;
+  signalsId?: string;
 }
 
 export interface SerializedAuthenticateWithCodeAndVerifierOptions extends SerializedAuthenticatePublicClientBase {
   grant_type: 'authorization_code';
   code_verifier: string;
   code: string;
   invitation_token?: string;
+  signals_id?: string;
 }
@@ -7,6 +7,7 @@ export interface AuthenticateWithCodeOptions extends AuthenticateWithOptionsBase
   codeVerifier?: string;
   code: string;
   invitationToken?: string;
+  signalsId?: string;
 }
 
 export interface AuthenticateUserWithCodeCredentials {
@@ -18,4 +19,5 @@ export interface SerializedAuthenticateWithCodeOptions extends SerializedAuthent
   code_verifier?: string;
   code: string;
   invitation_token?: string;
+  signals_id?: string;
 }
@@ -9,6 +9,7 @@ export interface AuthenticateWithMagicAuthOptions extends AuthenticateWithOption
   invitationToken?: string;
   linkAuthorizationCode?: string;
   radarAuthAttemptId?: string;
+  signalsId?: string;
 }
 
 export interface AuthenticateUserWithMagicAuthCredentials {
@@ -22,4 +23,5 @@ export interface SerializedAuthenticateWithMagicAuthOptions extends SerializedAu
   invitation_token?: string;
   link_authorization_code?: string;
   radar_auth_attempt_id?: string;
+  signals_id?: string;
 }
@@ -8,6 +8,7 @@ export interface AuthenticateWithPasswordOptions extends AuthenticateWithOptions
   password: string;
   invitationToken?: string;
   radarAuthAttemptId?: string;
+  signalsId?: string;
 }
 
 export interface AuthenticateUserWithPasswordCredentials {
@@ -20,4 +21,5 @@ export interface SerializedAuthenticateWithPasswordOptions extends SerializedAut
   password: string;
   invitation_token?: string;
   radar_auth_attempt_id?: string;
+  signals_id?: string;
 }
@@ -4,6 +4,7 @@ export interface CreateMagicAuthOptions {
   ipAddress?: string;
   userAgent?: string;
   radarAuthAttemptId?: string;
+  signalsId?: string;
 }
 
 export interface SerializedCreateMagicAuthOptions {
@@ -12,4 +13,5 @@ export interface SerializedCreateMagicAuthOptions {
   ip_address?: string;
   user_agent?: string;
   radar_auth_attempt_id?: string;
+  signals_id?: string;
 }
@@ -13,6 +13,7 @@ export interface CreateUserOptions {
   metadata?: Record<string, string>;
   ipAddress?: string;
   userAgent?: string;
+  signalsId?: string;
 }
 
 export interface SerializedCreateUserOptions {
@@ -28,4 +29,5 @@ export interface SerializedCreateUserOptions {
   metadata?: Record<string, string>;
   ip_address?: string;
   user_agent?: string;
+  signals_id?: string;
 }
@@ -14,4 +14,5 @@ export const serializeAuthenticateWithCodeAndVerifierOptions = (
   invitation_token: options.invitationToken,
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
+  signals_id: options.signalsId,
 });
@@ -17,4 +17,5 @@ export const serializeAuthenticateWithCodeOptions = (
   invitation_token: options.invitationToken,
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
+  signals_id: options.signalsId,
 });
@@ -19,4 +19,5 @@ export const serializeAuthenticateWithMagicAuthOptions = (
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
   radar_auth_attempt_id: options.radarAuthAttemptId,
+  signals_id: options.signalsId,
 });
@@ -18,4 +18,5 @@ export const serializeAuthenticateWithPasswordOptions = (
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
   radar_auth_attempt_id: options.radarAuthAttemptId,
+  signals_id: options.signalsId,
 });
@@ -11,4 +11,5 @@ export const serializeCreateMagicAuthOptions = (
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
   radar_auth_attempt_id: options.radarAuthAttemptId,
+  signals_id: options.signalsId,
 });
@@ -15,4 +15,5 @@ export const serializeCreateUserOptions = (
   metadata: options.metadata,
   ip_address: options.ipAddress,
   user_agent: options.userAgent,
+  signals_id: options.signalsId,
 });
@@ -207,6 +207,19 @@ describe('UserManagement', () => {
 
       expect(user.radarAuthAttemptId).toBeUndefined();
     });
+
+    it('sends signals_id when provided', async () => {
+      fetchOnce(userFixture);
+
+      await workos.userManagement.createUser({
+        email: 'test01@example.com',
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
   });
 
   describe('authenticateUserWithMagicAuth', () => {
@@ -242,6 +255,21 @@ describe('UserManagement', () => {
       });
     });
 
+    it('sends signals_id when provided', async () => {
+      fetchOnce({ user: userFixture });
+
+      await workos.userManagement.authenticateWithMagicAuth({
+        clientId: 'proj_whatever',
+        code: '123456',
+        email: userFixture.email,
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
+
     describe('when sealSession = true', () => {
       beforeEach(() => {
         fetchOnce({
@@ -324,6 +352,21 @@ describe('UserManagement', () => {
       });
     });
 
+    it('sends signals_id when provided', async () => {
+      fetchOnce({ user: userFixture });
+
+      await workos.userManagement.authenticateWithPassword({
+        clientId: 'proj_whatever',
+        email: 'test01@example.com',
+        password: 'extra-secure',
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
+
     describe('when sealSession = true', () => {
       beforeEach(() => {
         fetchOnce({
@@ -400,6 +443,20 @@ describe('UserManagement', () => {
       });
     });
 
+    it('sends signals_id when provided', async () => {
+      fetchOnce({ user: userFixture });
+
+      await workos.userManagement.authenticateWithCode({
+        clientId: 'proj_whatever',
+        code: 'or this',
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
+
     describe('public client mode (with codeVerifier, no API key)', () => {
       let publicWorkos: WorkOS;
       let originalApiKey: string | undefined;
@@ -718,6 +775,21 @@ describe('UserManagement', () => {
       });
     });
 
+    it('sends signals_id when provided', async () => {
+      fetchOnce({ user: userFixture });
+
+      await workos.userManagement.authenticateWithCodeAndVerifier({
+        clientId: 'proj_whatever',
+        code: 'auth_code_123',
+        codeVerifier: 'required_code_verifier',
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
+
     describe('when sealSession = true', () => {
       beforeEach(() => {
         fetchOnce({
@@ -1847,6 +1919,19 @@ describe('UserManagement', () => {
 
       expect(response.radarAuthAttemptId).toBeUndefined();
     });
+
+    it('sends signals_id when provided', async () => {
+      fetchOnce(magicAuthFixture);
+
+      await workos.userManagement.createMagicAuth({
+        email: 'bob.loblaw@example.com',
+        signalsId: 'signals_01ABC',
+      });
+
+      expect(fetchBody()).toMatchObject({
+        signals_id: 'signals_01ABC',
+      });
+    });
   });
 
   describe('getPasswordReset', () => {