# HyperAuth

## Docs

- [GET /api/indexer/{path}](https://docs.hyperauth.dev/api-reference/indexer/proxy.md): Proxies requests to the upstream indexer service. The /api/indexer prefix is stripped and the remainder is forwarded.
- [Inngest webhook](https://docs.hyperauth.dev/api-reference/inngest/webhook.md): Serves the Inngest webhook handler. All methods are forwarded to the Inngest SDK's serve() handler.
- [Introduction](https://docs.hyperauth.dev/api-reference/introduction.md): Vault HTTP API. Per-identifier routes are served by a Durable Object; global and stateless routes are served by the Cloudflare Worker directly.
- [GET /api/aliases/check](https://docs.hyperauth.dev/api-reference/lookups/aliases-check.md): Checks whether a handle alias is available for registration.
- [GET /api/dids/lookup](https://docs.hyperauth.dev/api-reference/lookups/dids-lookup.md): Resolves a WebAuthn credential ID to a registered on-chain DID.
- [Payment Handler](https://docs.hyperauth.dev/api-reference/payments/handler.md): Web Payment Handler API endpoints — service worker, confirmation page, and method manifest.
- [Rate Limits and Constants](https://docs.hyperauth.dev/api-reference/rate-limits.md): All rate limits, attestation TTLs, and worker constants in one place.
- [POST /api/dids](https://docs.hyperauth.dev/api-reference/registration/dids.md): Registers a DID after the identifier has been verified.
- [POST /api/sessions](https://docs.hyperauth.dev/api-reference/registration/sessions.md): Creates a registration session for an identifier. Checks reserved identifiers, duplicate registrations, and per-IP registration limits before writing to D1.
- [GET /api/sessions/check](https://docs.hyperauth.dev/api-reference/registration/sessions-check.md): Checks whether an identifier is available for registration.
- [POST /api/verify/check](https://docs.hyperauth.dev/api-reference/registration/verify-check.md): Verifies an OTP code for the identifier and returns a signed attestation.
- [POST /api/verify/send](https://docs.hyperauth.dev/api-reference/registration/verify-send.md): Sends a verification code to the identifier via the specified channel. Email is delivered via Resend; SMS via Twilio Verify.
- [GET /api/verify/status](https://docs.hyperauth.dev/api-reference/registration/verify-status.md): Returns the verification state for an identifier and channel.
- [GET /api/accounts/predict](https://docs.hyperauth.dev/api-reference/stateless/accounts-predict.md): Predicts the counterfactual smart account address for a given P-256 public key and salt.
- [GET /api/accounts/state](https://docs.hyperauth.dev/api-reference/stateless/accounts-state.md): Returns decoded on-chain state for a smart account: nonce, DID, active status, and public key coordinates.
- [GET /api/balance](https://docs.hyperauth.dev/api-reference/stateless/balance.md): Returns the native ETH or USDC balance for an address on a given chain.
- [POST /api/bundler](https://docs.hyperauth.dev/api-reference/stateless/bundler.md): Proxy for the Pimlico ERC-4337 bundler. Forwards a JSON-RPC request after validating the method name against an allowlist.
- [GET /api/contracts](https://docs.hyperauth.dev/api-reference/stateless/contracts.md): Returns the default smart contract addresses for Base Sepolia (chain ID 84532).
- [GET /api/sessions/status](https://docs.hyperauth.dev/api-reference/stateless/sessions-status.md): Returns registration counts for the requesting IP address and globally.
- [GET /api/status](https://docs.hyperauth.dev/api-reference/stateless/status.md): Returns the current operational status of the chain and database. Served with CORS headers.
- [GET /enclave.wasm](https://docs.hyperauth.dev/api-reference/static/enclave-wasm.md): Returns the enclave WASM binary.
- [System Architecture](https://docs.hyperauth.dev/concepts/architecture.md): Why HyperAuth is built the way it is — the dual-worker model, the split between stateless signer and stateful vault, OPFS persistence without SharedArrayBuffer, and the decision to run cryptography inside SQLite.
- [Decentralized Identifiers in HyperAuth](https://docs.hyperauth.dev/concepts/did-model.md): What DIDs are, why they matter for self-sovereign identity, and how HyperAuth implements them — from generation in the signer worker to on-chain registration in the DIDRegistry contract.
- [The Registration Pipeline](https://docs.hyperauth.dev/concepts/registration-flow.md): A deep examination of the twelve-phase registration process — why it is structured as a pipeline rather than a single call, where the failure boundaries are, and what each phase is actually doing and why.
- [Security Model](https://docs.hyperauth.dev/concepts/security-model.md): The threat model behind HyperAuth — why passkeys replace passwords, how the WASM boundary contains key material, what encrypted shares protect against, and where the trust boundaries actually lie in the dual-worker architecture.
- [Smart Account Abstraction](https://docs.hyperauth.dev/concepts/smart-account-abstraction.md): Why ERC-4337 account abstraction is central to HyperAuth, how HyperAuthFactory and CREATE2 make account addresses deterministic, and how passkey signatures work on-chain via the RIP-7212 P-256 precompile.
- [Local development](https://docs.hyperauth.dev/development.md): Run a HyperAuth app, the Vault Worker, and WASM enclave locally.
- [Alias Lookup](https://docs.hyperauth.dev/guides/alias-lookup.md): Compute alias hashes, resolve aliases and DIDs via the indexer, and check alias availability before registration.
- [Authentication](https://docs.hyperauth.dev/guides/authentication.md): Create and authenticate passkeys, handle errors, and configure auto-lock for the vault.
- [Deploy](https://docs.hyperauth.dev/guides/deploy.md): Deploy the HyperAuth Vault Worker and a client app that uses the SDK to Cloudflare.
- [Device Sync](https://docs.hyperauth.dev/guides/device-sync.md): Transfer an existing HyperAuth identity to a new device using the three-step sync protocol.
- [Payments](https://docs.hyperauth.dev/guides/payments.md): Submit gasless ERC-4337 payments from a HyperAuth smart account using the SDK's built-in payment methods.
- [Smart Accounts](https://docs.hyperauth.dev/guides/smart-accounts.md): Predict account addresses, inspect on-chain state, build and send ERC-4337 UserOps, and wait for receipts.
- [UCAN Delegation](https://docs.hyperauth.dev/guides/ucan-delegation.md): Mint UCAN tokens, delegate capabilities to other identities, and invoke delegated commands.
- [Vault Management](https://docs.hyperauth.dev/guides/vault-management.md): Lock, unlock, and check vault status; export and import encrypted vault backups; persist vault state with snapshots.
- [Introduction](https://docs.hyperauth.dev/index.md): Open source passkey identity for modern apps. Self-host the worker, audit every line, ship without password infrastructure.
- [Quickstart](https://docs.hyperauth.dev/quickstart.md): Go from zero to a working passkey-authenticated React app in under ten minutes.
- [Configuration Reference](https://docs.hyperauth.dev/sdk-reference/configuration.md): Configuration objects for the HyperAuth SDK client and Vault worker.
- [Smart Contracts Reference](https://docs.hyperauth.dev/sdk-reference/contracts.md): All contracts are deployed on Base Sepolia (chain ID 84532).
- [React Hooks Reference](https://docs.hyperauth.dev/sdk-reference/react-hooks.md): Hooks and provider API for the HyperAuth React components.
- [SDK Client Reference](https://docs.hyperauth.dev/sdk-reference/sdk-client.md): All exports, types, and options for the HyperAuth SDK client.
- [TypeScript Types Reference](https://docs.hyperauth.dev/sdk-reference/types.md): All types exported from @hyperauth/sdk (package @hyperauth/client).
- [UI Components Reference](https://docs.hyperauth.dev/sdk-reference/ui-components.md): All components accept `className` for style overrides.
- [Build a Registration Flow](https://docs.hyperauth.dev/tutorials/register-identity.md): Build a complete identity registration flow using the useRegistration hook and its 12 progress phases.
- [Sign and Verify Data](https://docs.hyperauth.dev/tutorials/sign-and-verify.md): Sign arbitrary data with your HyperAuth identity and derive a blockchain address from the same key.

## OpenAPI Specs

- [openapi](https://docs.hyperauth.dev/api-reference/openapi.json)

## Optional

- [GitHub](https://github.com/hyper-auth)