Restore lost info from pre-IA (#2740)

Author: alexisintech

docs/guides/configure/auth-strategies/sign-up-sign-in-options.mdx

@@ -76,6 +76,14 @@ A passkey is a type of sign-in credential that requires one user action, but use
 
 **Users can only create passkeys after signing up**, so you'll need to enable another authentication strategy for the sign-up process. After signing in, users can create a passkey.
 
+<If sdk="android">
+  When setting up passkeys with Android, there are a few additional steps to follow. [Learn more about passkeys for Android](/docs/reference/android/passkeys).
+</If>
+
+<If sdk="expo">
+  When setting up passkeys with Expo, there are a few additional steps to follow. [Learn more about passkeys for Expo](/docs/reference/expo/passkeys).
+</If>
+
 #### Passkey limitations
 
 - Passkeys are not currently available as an [MFA](#multi-factor-authentication) option.

docs/guides/development/custom-flows/authentication/passkeys.mdx

@@ -11,10 +11,15 @@ This guide demonstrates how to use the Clerk API to build a custom user interfac
 
 ## Enable passkeys
 
-To use passkeys, you must first enable it for your application.
+To use passkeys, first enable the strategy in the [Clerk Dashboard](https://dashboard.clerk.com/~/user-authentication/user-and-authentication?user_auth_tab=passkeys).
 
-1. In the Clerk Dashboard, navigate to the [**User & authentication**](https://dashboard.clerk.com/~/user-authentication/user-and-authentication) page.
-1. Select the **Passkeys** tab and enable **Sign-in with passkey**.
+<If sdk="android">
+  When setting up passkeys with Android, there are a few additional steps to follow. [Learn more about passkeys for Android](/docs/reference/android/passkeys).
+</If>
+
+<If sdk="expo">
+  When setting up passkeys with Expo, there are a few additional steps to follow. [Learn more about passkeys for Expo](/docs/reference/expo/passkeys).
+</If>
 
 ### Domain restrictions for passkeys
 

docs/manifest.json

@@ -1577,6 +1577,10 @@
                         {
                           "title": "`useSSO()`",
                           "href": "/docs/reference/expo/use-sso"
+                        },
+                        {
+                          "title": "Configure passkeys",
+                          "href": "/docs/reference/expo/passkeys"
                         }
                       ]
                     ]
@@ -1925,6 +1929,14 @@
                         {
                           "title": "Overview",
                           "href": "/docs/reference/android/overview"
+                        },
+                        {
+                          "title": "`getToken()`",
+                          "href": "/docs/reference/android/get-token"
+                        },
+                        {
+                          "title": "Configure passkeys",
+                          "href": "/docs/reference/android/passkeys"
                         }
                       ]
                     ]

docs/reference/android/get-token.mdx

@@ -0,0 +1,63 @@
+---
+title: '`getToken()`'
+description: Use Clerk's Android SDK to retrieve a token for a JWT template that is defined in the Clerk Dashboard.
+sdk: android
+---
+
+The `getToken()` method retrieves the user's [session token](/docs/guides/sessions/session-tokens) or a [custom JWT template](/docs/guides/sessions/jwt-templates).
+
+This method uses a cache so a network request will only be made if the token in memory has expired. The TTL for a Clerk token is one minute.
+
+Tokens can only be generated if the user is signed in.
+
+```kotlin {{ filename: 'Session.kt' }}
+suspend fun Session.fetchToken(
+  options: SessionGetTokenOptions = SessionGetTokenOptions()
+): TokenResource? {
+  return SessionTokenFetcher().getToken(this, options)
+}
+```
+
+## Parameters
+
+<Properties>
+  - `options`
+  - [`GetTokenOptions`](#get-token-options)
+
+  Options that can be passed as parameters to the `getToken()` function.
+</Properties>
+
+### `GetTokenOptions`
+
+<Properties>
+  - `template`
+  - `String?`
+
+  The name of the JWT template from the [Clerk Dashboard](https://dashboard.clerk.com/last-active?path=jwt-templates) to generate a new token from. For example: 'firebase', 'grafbase', or your custom template's name.
+
+  ---
+
+  - `expirationBuffer`
+  - `Long`
+
+  If the cached token will expire within `{expirationBuffer}` seconds, fetch a new token instead. Max is 60 seconds. Defaults to 10 seconds.
+
+  ---
+
+  - `skipCache`
+  - `Boolean`
+
+  Whether to skip the cache lookup and force a refresh of the token instead. Useful if the token claims are time-sensitive or depend on data that can be updated (e.g. user fields). Defaults to false.
+</Properties>
+
+## Example
+
+```kotlin
+val session = Clerk.session
+
+scope.launch {
+    val token = session?.fetchToken()?.onSuccess { tokenResource ->
+        headers["Authorization"] = "Bearer ${tokenResource.jwt}"
+    }
+}
+```

docs/reference/android/passkeys.mdx

@@ -0,0 +1,31 @@
+---
+title: Configure passkeys for Android
+description: Learn how to configure passkeys for your Android application.
+sdk: android
+---
+
+[Passkeys](/docs/guides/configure/auth-strategies/sign-up-sign-in-options#passkeys) are a secure, passwordless authentication method that use biometrics and a physical device to authenticate users. This guide shows you how to configure passkeys for your Android application.
+
+> [!WARNING]
+> Android supports passkeys from version 9+. Passkeys will not work with Android emulators. You must use a physical device.
+
+<Steps>
+  ## Enable passkeys
+
+  To use passkeys, first enable the strategy in the [Clerk Dashboard](https://dashboard.clerk.com/~/user-authentication/user-and-authentication?user_auth_tab=passkeys).
+
+  ## Set up your Android app links in the Clerk Dashboard
+
+  1. In the Clerk Dashboard, navigate to the [**Native Applications**](https://dashboard.clerk.com/last-active?path=user-authentication/native-applications) page.
+  1. Select the **Android** tab.
+  1. Select **Add Android app**.
+  1. Fill out the form with the following information:
+     - The `namespace` (This guide uses the default value `android_app`)
+     - Your Android app's package name. You can find this in your app-level `build.gradle` file, typically formatted like `com.example.myclerkapp`.
+     - The `SHA256 certificate fingerprints`. If you don't know where to find the `SHA256 certificate fingerprints`, see the [Android docs](https://developers.google.com/android/guides/client-auth).
+  1. After submitting the form, you can verify that your `assetlinks.json` file is properly associated with your app by using [Google's **Statement List Generator and Tester**](https://developers.google.com/digital-asset-links/tools/generator).
+</Steps>
+
+## Usage
+
+To learn how to use passkeys in your Android application, such as creating, deleting, and authenticating users with passkeys, see the [custom flow guide](/docs/guides/development/custom-flows/authentication/passkeys).

docs/reference/expo/passkeys.mdx

@@ -0,0 +1,173 @@
+---
+title: Configure passkeys for Expo
+description: Learn how to configure passkeys for your Expo application.
+sdk: expo
+---
+
+[Passkeys](/docs/guides/configure/auth-strategies/sign-up-sign-in-options#passkeys) are a secure, passwordless authentication method that use biometrics and a physical device to authenticate users. This guide shows you how to configure passkeys for your Expo application.
+
+> [!WARNING]
+> This API is available only for [`@clerk/clerk-expo >=2.2.0`](/docs/guides/development/upgrading/upgrade-guides/expo-v2).
+
+<Steps>
+  ## Enable passkeys
+
+  To use passkeys, first enable the strategy in the [Clerk Dashboard](https://dashboard.clerk.com/~/user-authentication/user-and-authentication?user_auth_tab=passkeys).
+
+  ## Configure passkeys
+
+  Use the following tabs to configure your passkeys for `iOS` or `Android`.
+
+  <Tabs items={['iOS', 'Android']}>
+    <Tab>
+      > [!WARNING]
+      > iOS supports passkeys from version iOS 16+
+      >
+      > This library includes native code and will not work when running Expo Go. Instead, use a development build by running `npx expo run:ios`.
+
+      ### Get your App ID Prefix and Bundle ID from Apple
+
+      To get your **App ID Prefix** and **Bundle ID**, follow these steps:
+
+      1. Navigate to the [Apple Developer dashboard](https://developer.apple.com/account).
+      1. Under **Certificates, IDs and Profiles**, select [**Identifiers**](https://developer.apple.com/account/resources/identifiers/list).
+      1. In the top-right, select the dropdown and select **App IDs**.
+      1. Select the **App ID** you want to configure passkeys for. You'll be redirect to the **Review your App ID Configuration** page.
+      1. At the top of the page, you'll see your **App ID Prefix** and **Bundle ID**. Save these values somewhere secure.
+
+      ### Set up your associated domain file in the Clerk Dashboard
+
+      1. In the Clerk Dashboard, navigate to the [**Native Applications**](https://dashboard.clerk.com/last-active?path=user-authentication/native-applications) page.
+      1. Select the **iOS** tab.
+      1. Select **Add iOS App**.
+      1. Paste the **App ID Prefix** and **Bundle ID** that you copied in the previous step.
+      1. Select **Add App**.
+      1. On the right-side, save your **Frontend API URL** somewhere secure.
+
+      ### Update `app.json` in your Expo app
+
+      1. In your app's `app.json` file, under the `ios` object, add the `associatedDomains` property as shown in the following example. Replace `<YOUR_FRONTEND_API_URL>` with the **Frontend API URL** value that you saved in the previous step.
+
+      ```json {{ filename: 'app.json', mark: [[5, 12], [14, 20]] }}
+      {
+        "expo": {
+          //...existing properties
+          "plugins": [
+            [
+              "expo-build-properties",
+              {
+                "ios": {
+                  "deploymentTarget": "16.0" //  iOS Support passkeys from version iOS 16+
+                }
+              }
+            ]
+          ],
+          "ios": {
+            //...existing properties
+            "associatedDomains": [
+              "applinks:<YOUR_FRONTEND_API_URL>",
+              "webcredentials:<YOUR_FRONTEND_API_URL>"
+            ]
+          }
+        }
+      }
+      ```
+    </Tab>
+
+    <Tab>
+      > [!WARNING]
+      > Android supports passkeys from version 9+. Passkeys will not work with Android emulators. You must use a physical device.
+      >
+      > This library includes native code and [will not work when running Expo Go](https://docs.expo.dev/workflow/customizing/#using-libraries-that-include-native-code). Instead, use a development build by running `npx expo run:android`.
+
+      ### Set up your Android app links in the Clerk Dashboard
+
+      1. In the Clerk Dashboard, navigate to the [**Native Applications**](https://dashboard.clerk.com/last-active?path=user-authentication/native-applications) page.
+      1. Select the **Android** tab.
+      1. Select **Add Android app**.
+      1. Fill out the form with the following information:
+         - The `namespace` (This guide uses the default value: `android_app`)
+         - Your Android app's package name
+         - The `SHA256 certificate fingerprints`. If you don't know where to find the `SHA256 certificate fingerprints`, see the [Expo docs](https://docs.expo.dev/linking/android-app-links/#create-assetlinksjson-file).
+      1. After submitting the form, you can verify that your `assetlinks.json` file is properly associated with your app by using [Google's **Statement List Generator and Tester**](https://developers.google.com/digital-asset-links/tools/generator).
+      1. On the right-side, save your **Frontend API URL** somewhere secure.
+
+      ### Install `expo-build-properties` in your Expo application
+
+      ```npm
+      npm install expo-build-properties
+      ```
+
+      ### Update `app.json` in your Expo application
+
+      1. In your app's `app.json` file, under `android`, add the `intentFilters` property as shown in the following example. Replace `<YOUR_FRONTEND_API_URL>` with the **Frontend API URL** value that you saved in the previous step.
+
+      ```json {{ filename: 'app.json', mark: [[3, 6], [10, 22]] }}
+      {
+        "expo": {
+          "plugins": [["expo-build-properties"]],
+          "android": {
+            //...existing properties
+            "intentFilters": [
+              {
+                "action": "VIEW",
+                "autoVerify": true,
+                "data": [
+                  {
+                    "scheme": "https",
+                    "host": "<YOUR_FRONTEND_API_URL>"
+                  }
+                ],
+                "category": ["BROWSABLE", "DEFAULT"]
+              }
+            ]
+          }
+        }
+      }
+      ```
+    </Tab>
+  </Tabs>
+
+  ## Install `@clerk/expo-passkeys`
+
+  Run the following command to install the `@clerk/expo-passkeys` package:
+
+  ```npm
+  npm install @clerk/expo-passkeys
+  ```
+
+  ## Prebuild Expo project
+
+  Run the following command to prebuild your Expo project:
+
+  ```bash {{ filename: 'terminal' }}
+  npx expo prebuild
+  ```
+
+  ## Update your `<ClerkProvider>`
+
+  Pass the `passkeys` object to the `__experimental_passkeys` property of your `<ClerkProvider>` component, as shown in the following example:
+
+  ```tsx {{ filename: 'app/_layout.tsx', mark: [4, 11] }}
+  import { ClerkProvider } from '@clerk/clerk-expo'
+  import { Slot } from 'expo-router'
+  import { tokenCache } from '@clerk/clerk-expo/token-cache'
+  import { passkeys } from '@clerk/clerk-expo/passkeys'
+
+  export default function RootLayout() {
+    return (
+      <ClerkProvider
+        tokenCache={tokenCache}
+        publishableKey={publishableKey}
+        __experimental_passkeys={passkeys}
+      >
+        <Slot />
+      </ClerkProvider>
+    )
+  }
+  ```
+</Steps>
+
+## Usage
+
+To learn how to use passkeys in your Expo application, such as creating, deleting, and authenticating users with passkeys, see the [custom flow guide](/docs/guides/development/custom-flows/authentication/passkeys).