First updates for RP ID GA (#1072)

* fix: Update export-password-hashes-and-mfa-secrets.mdx (#1117)

* feat: add resend email provider docs (#1120)

* feat: add resend email provider docs

* feat: add screenshot for creating api key

* Update main/docs/customize/email/smtp-email-providers/resend.mdx

Co-authored-by: Carlos Fung <carlos.fung@okta.com>

* Update main/docs/customize/email/smtp-email-providers/resend.mdx

Co-authored-by: Carlos Fung <carlos.fung@okta.com>

* fix: improve terminology

---------

Co-authored-by: Carlos Fung <carlos.fung@okta.com>

* fix: clarify event stream testing and add delivery failure causes (#1125)

Remove AWS EventBridge/webhooks specificity from test stream intro, and add
bullet list of common delivery failure causes for observability guidance.

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* fix: layout shift on navigation (#1118)

* fix: layout shift on navigation

* fix: padding

* fix: api headers

* feat: typography updates (#1119)

* feat: update typographic styles

* feat: update additional styles

* fix: image container sizing (#1126)

* fix: image container sizing

* fix: center image

* fix: add inline links for MFA Action API methods and event object fields (#1128)

Link challengeWith, challengeWithAny, event.authentication.methods, and
additionalFactors to their respective API reference docs.

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* chore: update Management API OAS artifacts (#1127)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyOrganization API OAS artifacts (#1129)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* feat: add resend reference links (#1131)

* Modernize Ionic & Capacitor quickstarts for React, Angular, and Vue (#1039)

* Modernize Ionic & Capacitor quickstarts for React, Angular, and Vue

* fix: update Ionic quickstart commands to use npx for project creation

* fix: update Ionic CLI instructions and browser testing notes in quickstart guides

* Use case update for Cloudflare Managed Challenges (#1085)

* Use case update

* Addressed comments

* Merge conflicts and adding endpoints

* Delete CLAUDE.md

* Updated Claude.MD instead of local version, reverted changes.

* Update ACUL JS SDK Screens to 1.3  version (#1109)

* Update description on Login and Signup screens

* docs: update JS SDK class docs to gold standard for MFA phone and push screens

Rewrites MfaPhoneChallenge, MfaPhoneEnrollment, MfaPushChallengePush,
MfaPushEnrollmentQr, MfaPushList, and MfaPushWelcome to match gold standard
conventions: description frontmatter, correct constructor intro, typescript
code blocks, screen-specific property descriptions, changeLanguage method,
alphabetical method order, and Method Parameters/Expandable structure.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* update

* fix: remove trailing *** after last method in JS SDK class docs

The *** divider should only appear between methods, not after the
final method in each screen doc. Fixes 14 files across Login, MFA,
and Push screen classes.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* docs: align MFA screen class docs to JS SDK gold standard

Update 17 MFA screen class docs (phone, recovery code, SMS, voice, WebAuthn
variants) to match established gold-standard conventions: alphabetical method
order, correct divider placement, required markers, interface type links, and
consistent property descriptions.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix: replace &#x22; HTML entities with literal quotes in JS SDK class docs

Use single-quoted outer JSX attribute delimiters with literal double
quotes inside, instead of &#x22; hex entities, for all string union
type values across 44 class docs.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* docs: sync ACUL JS SDK docs to v1.3.0 changelog

- Rename stale error classes to match TypeDoc names (Auth0ServerError →
  Auth0Error, SDKUsageError → ConfigurationError/ValidationError)
- Add missing BruteForceProtectionUnblock, BruteForceProtectionUnblockFailure,
  and BruteForceProtectionUnblockSuccess class docs with navigation entries
- Align all class docs to gold-standard format (descriptions, Expandable
  params, *** separators, consistent method signatures)
- Add missing clientSubdomain? to CaptchaContext interface (v1.0.0)
- Add missing showPasskeyAutofill to TransactionMembersOnLoginId interface (v1.0.0)
- Add missing email? field to ScreenMembersOnResetPasswordEmail.data (v1.3.0)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* Updating with translated files (#1132)

* fix: api explorer typography (#1130)

* fix: api explorer typography

* fix: update sidebar styling

* fix: update sidebar styling a4aa

* fix: prose typography

* feat: separate generated API docs nav (#1111)

* move config to separate files

* remove index files

* fix: update and resolve redirect links (#1138)

* chore: update Management API OAS artifacts (#1133)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyOrganization API OAS artifacts (#1134)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* feat: update Auth API docs (#1069)

* chore: update Management API OAS artifacts (#1142)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyOrganization API OAS artifacts (#1143)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* Fix/dr mint dev warnings (#1137)

* Requested directions for generic provider

* Updated

* fix: resolve mint dev warnings across quickstart and navigation files

- Remove stale `import Jwt` and `<Jwt />` references from fr-ca and
  ja-jp Go backend quickstarts (jwt.go.mdx no longer exists)
- Create missing Laravel snippet files (web.php.mdx, web.php2.mdx,
  web.php3.mdx) required by the Laravel webapp quickstart
- Remove non-existent nav entries from en.json (aspnet-owin/interactive,
  wpf-winforms/interactive) and fr-ca.json (real-time-webtask-logs)
- Add placeholder redirect index.mdx files for fr-ca and ja-jp
  java-spring-security5 quickstart directories

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Removed update from another PR

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* feat: plan customization for release stage notices (#1136)

* add support for specifying plans

* remove manual notices from the authenticate section

* Removed cutover and rollback strategy section (#1144)

* fix: add marketplace setup steps to agent-skills install docs (#1146)

* fix: rewrite agent skills page with correct install paths and accurate content

- Claude Code: /plugin install auth0@claude-plugins-official + terminal CLI variant
- Cursor: link to cursor.com/marketplace/auth0 (was citing nonexistent Settings > Plugins)
- Replace Codex tab with Other Agents tab showing Skills CLI
- Add Prerequisites section with Auth0 account + dashboard requirements
- Rewrite "How it works" with concrete details (files read, SDKs installed, routes created)
- Change example prompts from 5 separate code blocks to scannable bullet list
- Fix SDK links from broken /docs/libraries/ paths to GitHub repos
- Fix "Open Plugins" → "Agent Skills" (correct standard name)
- Add 40+ agent ecosystem context
- Improve SEO description with platform names

* Rewrite agent skills page as a developer guide

Restructure around what developers actually want: install, try
something, discover what's possible.

- Add 'Try it now' section right after install with 3 starter prompts
- Rewrite 'How it works' to cover all skill types, not just quickstarts
- Replace SDK-mapping tables with use-case tables: skill name, what it
  does, copyable example prompt for each of 23 skills
- Reorder sections: install → try it → how it works → all skills
- Drop SDK/package column — internal plumbing developers don't need

* fix: add marketplace setup steps to agent-skills install docs

Users who don't have the claude-plugins-official marketplace added
or have a stale version get "not found" errors when running the
install command. Add marketplace update before install, and a Note
with the marketplace add command as a fallback.

* fix: add missing skills (CLI, Go API) and update skill count to 25

Also changes default Skills CLI command to use --all flag in the
Other Agents tab.

* feat: event-driven skill sync + add missing skills to discovery endpoint (#1147)

* fix: add auth0-cli and go-jwt-middleware to Mintlify skills discovery

Syncs .mintlify/skills/ with the agent-skills repo. These two skills
were merged recently but not added to the docs discovery endpoint,
so they don't appear in /.well-known/skills/index.json.

* fix: sync full skill directories (SKILL.md + references), not just SKILL.md

The workflow previously only copied SKILL.md via sparse-checkout but
skills reference ./references/*.md files. Now copies the full skill
directory (minus tests/) to keep references intact.

* feat: add repository_dispatch trigger for event-driven skill sync

- Add repository_dispatch trigger so agent-skills can notify on push
- Update skill.md to list 25 skills (add auth0-cli, go-jwt-middleware)
- Remove leaked auth0-cli/tests/ directory

* feat: DOCS-5467 Online Refresh Tokens (#1055)

* feat: DOCS-5467 add online-refresh-tokens to en.json nav

Navigation was refactored to use config/navigation/en.json.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* feat: DOCS-5467 Online Refresh Tokens

Add documentation for Online Refresh Tokens (Beta), covering configuration,
usage, revocation, unsupported flows, and Actions integration.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Update doc

* update

* update doc

* refactor: move online-refresh-tokens into directory with overview and configure pages

- Reorganize online-refresh-tokens.mdx → online-refresh-tokens/overview.mdx
- Move configure-online-refresh-tokens.mdx → online-refresh-tokens/configure-online-refresh-tokens.mdx
- Update en.json navigation to use Online Refresh Tokens group
- Add redirects for both old flat URLs

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* update

* update

* chore: remove unnecessary redirects for new online-refresh-tokens pages

Pages were never published to production, so no redirects needed.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* update

* update

* update

* Update

* Update

* Update

* Minor content update and Action sample

* update

* update release stage notice

* update releastagenotice to enterprise

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update configure-online-refresh-tokens.mdx

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update en.json

* Update en.json

* Rename overview.mdx to online-refresh-tokens.mdx

* Update configure-online-refresh-tokens.mdx

* Update en.json

* Update configure-online-refresh-tokens.mdx

* Update main/docs/secure/tokens/refresh-tokens/online-refresh-tokens/configure-online-refresh-tokens.mdx

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update main/docs/secure/tokens/refresh-tokens/online-refresh-tokens/online-refresh-tokens.mdx

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update main/docs/secure/tokens/refresh-tokens/online-refresh-tokens/configure-online-refresh-tokens.mdx

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Apply suggestion from @nick-gagliardi

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update configure-online-refresh-tokens.mdx

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>

* Update configure-keep-me-signed-in-sessions.mdx (#1141)

* Fix/docs 5467 stage notice (#1150)

* Update configure-online-refresh-tokens.mdx

* Update online-refresh-tokens.mdx

* feat: migrate Go backend quickstart to single index.mdx format (#968)

Consolidate multi-file Go API quickstart (interactive.mdx, 02-using.mdx,
  03-troubleshooting.mdx, 6 snippet files) into a single index.mdx with
  mode: wide layout, Steps component, and inline code examples. Update
  go-jwt-middleware version to v3.1.0 across quickstart and libraries.
  Add redirects for old paths.

* chore: update Management API OAS artifacts (#1153)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyOrganization API OAS artifacts (#1154)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: implement root pages and automatic child page listing for authenticate section (#1155)

* chore: rename header CTA to Let's Connect (#1158)

Updates the Log In / Sign Up / Contact Sales header button set in the
main docs site. The third button now reads "Let's Connect" per marketing
request. Updates source (unauthenticated-menu.tsx) and rebuilt UMD
bundle; css comment updated to match.

Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>

* chore: update MyOrganization API OAS artifacts (#1163)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyAccount API OAS artifacts (#1161)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* revamp: migrate Node.js (Express) backend API quickstart to new content model (#996)

* revamp: migrate Node.js (Express) backend API quickstart to new content model

* Fix review feedback: move CLI note after command, add placeholder note to both tabs, change Warning to Note

* Replace okta-spring-boot with auth0-auth-java for Spring Boot API SDK (#1159)

The Spring Boot API SDK entry on the libraries page now points to the
newly launched auth0/auth0-auth-java repository instead of the legacy
okta/okta-spring-boot package. Updated across all locales (en, fr-ca,
ja-jp) and the shared SdkLibraries snippet.

* Migrates UWP quickstart to new content model (#1122)

* Update log-streams.mdx (#1169)

* Fix/docs 5467 (#1168)

* Update configure-online-refresh-tokens.mdx

* Update online-refresh-tokens.mdx

* fix: self service rate limit docs (#985)

* update self service rate limit docs

* Update essentials-professional-b2b.mdx

* Update rate-limit-configurations.mdx

---------

Co-authored-by: Claude <noreply@anthropic.com>

* docs: address feedback on quickstart/webapp/nextjs/index.mdx (#1173)

* chore: update MyAccount API OAS artifacts (#1175)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update Management API OAS artifacts (#1176)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* chore: update MyOrganization API OAS artifacts (#1177)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* First updates for RP ID GA

* fix: GA non-unique-emails.mdx (#1181)

* fix: redirect on UWP quickstart (#1191)

* Update deprecations-and-migrations.mdx (#1190)

* Updated image location for fix (#1194)

* chore: update Management API OAS artifacts (#1196)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* edit tenant admin blocks + brute-force protection blocks (#1166)

* Refactor/mdl deprecation and redirect (#1195)

* Mobile Driver's Licence Deprecation

* Removed Cards from Secure

* Update main/config/redirects.json

Co-authored-by: Hazel Virdó <hazel.virdo@okta.com>

* Fix invalid JSON in redirects.json by removing stray closing brace

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

---------

Co-authored-by: Hazel Virdó <hazel.virdo@okta.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* chore: update MyOrganization API OAS artifacts (#1197)

Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>

* docs: update domain discovery for organizations (#1179)

* fix: add X-Forwarded-For header requirement details for self-managed domains (#1167)

* fix: add XFF header details required for self-managed domains

* Apply suggestions from code review

Co-authored-by: Hazel Virdó <github@virdo.name>

* hazel goofed

* consolidated http headers in one table

* Update main/docs/customize/custom-domains/self-managed-certificates.mdx

Co-authored-by: Hazel Virdó <github@virdo.name>

* fixes

---------

Co-authored-by: Hazel Virdó <github@virdo.name>

* docs: Docs updated with agent skills for ionic React,Vue, Angular SDKs (#1193)

* Updates quickstart docs for ionic SDKs

* Applies copyediting suggestions

* docs: updated the docs command to use the new qs setup flow (#1170)

* docs: updated the docs command to use the new qs setup flow

* fix: update the nextjs .env.local to .env

* fix: java spring security redirects (#1208)

* fix: log logs lol (#1211)

* Add workflow to auto-update SDK versions (#1174)

* Add workflow to auto-update SDK versions

Add a GitHub Actions workflow (.github/workflows/update-sdk-versions.yml) that runs daily (and on manual dispatch) to fetch latest releases/tags for various SDK repos using the GitHub CLI and jq, and update badge and date fields in main/docs/libraries.mdx. The script handles repos with prefixed tags (monorepos), falls back to tags/commits when no release exists, formats dates, and uses sed to patch the file. If changes are detected it creates a branch (chore/sdk-version-update-YYYYMMDD) and opens a PR labeled sdk-version-autoupdate, avoiding duplicate open PRs.

* Remove ACUL universal-login update step

Remove the ACUL SDK block from the update-sdk-versions workflow by deleting the "universal-login" update_sdk_prefixed call and its comment. This stops automatic version updates for auth0/universal-login (auth0-acul-js-v) in the workflow.

* docs: redesign Next.js quickstart sample app UI (#862)

* Fix/dr 2750 update Unified Phone Experience doc (#1140)

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Add files via upload

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Add files via upload

* Add files via upload

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Update use-auth0s-unified-phone-experience-for-multi-factor-authentication.mdx

* Delete main/docs/images/cdy7uua7fh8z/1mZryDWIpdkpGmhxn4Gr8K/4bdad7fbcd81dd0bf4855d94b7205e8b/Unified-phone-experince-MFA.png

* Update customize-signup-and-login-prompts.mdx (#1171)

* Update customize-signup-and-login-prompts.mdx

* Update customize-signup-and-login-prompts.mdx

* fix: correct two typos in customize-signup-and-login-prompts

- datatabe → database
- from from → from

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* fix(DOCS-5493): review and fix customize-signup-and-login-prompts.mdx

- Promote all #### and ##### headings to ## and ### for Mintlify ToC visibility
- Fix typo: prompt.screen.texts → prompt.screen.text
- Complete incomplete sentence in Validate and Save section
- Fix image alt text for partials editor screenshot
- Replace all four <Warning> blocks with <Callout> per component standards
- Fix mixed JSON/bash code block: split into bash request + prose + json response
- Strip trailing whitespace and reduce excessive blank lines

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

* Update customize-signup-and-login-prompts.mdx

* Update customize-signup-and-login-prompts.mdx

* Update customize-signup-and-login-prompts.mdx

* Update customize-signup-and-login-prompts.mdx

---------

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* docs: update flexible pw policy API instructions (#1198)

* chore: simplify CLAUDE.md for agent use (#1180)

- moves writing guidance to WRITING_GUIDE

* Spec has RP ID. Matching to the spec

---------

Co-authored-by: Nick Gagliardi <133918568+nick-gagliardi@users.noreply.github.com>
Co-authored-by: Ankur Chauhan <ankur.chauhan@auth0.com>
Co-authored-by: Carlos Fung <carlos.fung@okta.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: auth0-docs-automation[bot] <266159893+auth0-docs-automation[bot]@users.noreply.github.com>
Co-authored-by: Subhankar Maiti <35273200+subhankarmaiti@users.noreply.github.com>
Co-authored-by: Hazel Virdó <hazel.virdo@okta.com>
Co-authored-by: Darrick Yong <darrickyong@gmail.com>
Co-authored-by: Michael Perrotte <mike@mikecorp.ca>
Co-authored-by: Bharath Natarajan <166125343+brth31@users.noreply.github.com>
Co-authored-by: Kunal Dawar <35455566+developerkunal@users.noreply.github.com>
Co-authored-by: Kevin Lillybridge <72629430+kevlil83@users.noreply.github.com>
Co-authored-by: Arpit Jain <167312832+arpit-jn@users.noreply.github.com>
Co-authored-by: Kailash B <kailash.b@okta.com>
Co-authored-by: erikbos-auth0 <erik.bos@auth0.com>
Co-authored-by: Hazel Virdó <github@virdo.name>
Co-authored-by: nandan_prabhu <nandan.prabhup@okta.com>
Co-authored-by: KartikJha <kartik.n.jha@gmail.com>
Co-authored-by: Rengarajan <renga.anbil@gmail.com>
Co-authored-by: Amanda Giannelli <85696646+agiannelli-auth0@users.noreply.github.com>

Author: 20 people

main/docs/authenticate/database-connections/passkeys.mdx

@@ -115,14 +115,12 @@ For passwordless login, the selected custom domain should be reflected in the Ma
 
 ### Relying party ID for Passkeys
 
-<ReleaseStageNotice
-    feature="Relying Party ID for Passkeys"
-    stage="ea"
-    terms="true"
-/>
-
 The [relying party identifier (RP ID)](https://www.w3.org/TR/webauthn-2/#relying-party-identifier) is a domain that WebAuthn binds to credentials like passkeys. The RP ID defines which request origins are allowed for authentication.
 
+<Callout icon="file-lines" color="#0EA5E9" iconType="regular">
+Your application’s domain must be added to the **Allowed Origins (CORS)** list in your [application settings](https://manage.auth0.com/#/applications) for the RP ID to work correctly.
+</Callout>
+
 Defining the RP ID as a suffix of the origin lets users authenticate across subdomains using one passkey. For example, if your web application is served at `login.example.com` and your native application is served at `app.example.com`, you can configure the RP ID to `example.com` so end users can authenticate both applications (and any other `example.com` subdomain) with a single passkey.
 
 | Environment | Root Domain | RP ID |
@@ -134,3 +132,8 @@ Defining the RP ID as a suffix of the origin lets users authenticate across subd
 With Auth0, you can customize the RP ID to the root or parent domain so users can authenticate on mobile applications or web applications using the same passkey. If you're using Multiple Custom Domains, you can also set `rp.id` for each custom domain.
 
 To learn how to customize the RP ID, read [Configure Passkey Policy](/docs/authenticate/database-connections/passkeys/configure-passkey-policy).
+
+## Learn more
+
+* [Configure Passkey Authentication](/docs/authenticate/database-connections/passkeys/configure-passkey-policy)
+* [Monitor Passkey Events in Tenant Logs](/docs/authenticate/database-connections/passkeys/monitor-passkey-events-in-tenant-logs)

main/docs/authenticate/database-connections/passkeys/configure-passkey-policy.mdx

@@ -170,28 +170,28 @@ Once you complete the prerequisites, you can use the Auth0 Dashboard to enable a
 
 To ensure the best experience for end users when using passkeys, you may want to consider the following additional steps.
 
-### <Badge color="yellow">Early Access</Badge> Configure relying party ID (RP ID)
-
-<ReleaseStageNotice
-    feature="Relying Party ID for Passkeys"
-    stage="ea"
-    terms="true"
-/>
+### Configure relying party ID (RP ID)
 
 To allow users to use a single passkey to authenticate across all subdomains (for example, both a native application served at `app.example.com` and a web application served at `login.example.com`), you can set the RP ID to the parent or root domain.
 
 <Callout icon="file-lines" color="#0EA5E9" iconType="regular">
 When you customize the RP ID in the Auth0 Dashboard or Management API, all passkeys for other domains will be unusable, and your end users must re-enroll.
 </Callout>
 
-To set the RP ID on Auth0:
+Your application’s domain must be added to the **Allowed Origins (CORS)** list in your [application settings](https://manage.auth0.com/#/applications) for the RP ID to work correctly.
+
+To set the RP ID in Auth0 Dashboard:
 
 1. Navigate to **[Auth0 Dashboard > Tenant Settings](https://manage.auth0.com/#/tenant/relying_party_ids)**.
 2. Select the **Relying Party IDs** tab.
 3. Choose **Edit Relying Party ID**.
 4. Enter the domain.
-5. If this RPID is the root domain, select the checkbox to set the domain as the default for your tenant.
+5. If this RP ID is the root domain, select the checkbox to set the domain as the default for your tenant.
 6. Select **Save**.
+7. Next, navigate to the application you want to set a relying party ID.
+8. Select the application settings.
+9. Under the **Application URIs** section, add your application's domain in Allowed Origins (CORS).
+10. Select **Save**.
 
 ### Configure a custom domain
 

main/docs/authenticate/database-connections/passkeys/native-passkeys-api.mdx

@@ -298,7 +298,7 @@ Once this step is completed successfully, the passkey is enrolled for the user a
 
 Initiates the passkey login flow for an existing user who saved a passkey to their account during their initial signup.
 
-In response, Auth0 returns [PublicKeyCredentialRequestOptions](https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialrequestoptions), a session ID, and a Relying Party identifier `rpId`. Check `timeout` under `authn_params_public_key` in response for session timeout. The `rpId` returned in the response is the identifier the native device (iOS/Android) uses to look up saved credentials bound to a domain. For a passkey created on a web application (e.g., `example.com`) to be available in the native flow, the `rpId` returned must match the web's `rpId`. To learn how to customize the RPID for your tenant, read [Configure Passkey Policy](/docs/authenticate/database-connections/passkeys/configure-passkey-policy#configure-relying-party-id-rpid).
+In response, Auth0 returns [PublicKeyCredentialRequestOptions](https://www.w3.org/TR/webauthn-3/#dictdef-publickeycredentialrequestoptions), a session ID, and a Relying Party identifier `rpId`. Check `timeout` under `authn_params_public_key` in response for session timeout. The `rpId` returned in the response is the identifier the native device (iOS/Android) uses to look up saved credentials bound to a domain. For a passkey created on a web application (e.g., `example.com`) to be available in the native flow, the `rpId` returned must match the web's `rpId`. To learn how to customize the RP ID for your tenant, read [Configure Passkey Policy](/docs/authenticate/database-connections/passkeys/configure-passkey-policy#configure-relying-party-id-rp-id).
 
 The passkey login flow supports Organizations through the `organization` parameter, following the behavior described in [Login Flows for Organizations](/docs/manage-users/organizations/login-flows-for-organizations). If your application is configured for **Business Users**, you must provide the `organization` parameter and a valid Organization name or identifier value.
 

main/docs/customize/custom-domains/multiple-custom-domains/passkeys.mdx

@@ -8,17 +8,17 @@ import {AuthCodeBlock} from "/snippets/AuthCodeBlock.jsx";
 
 ## How passkeys work with custom domains
 
-### WebAuthn Relying Party ID (RPID)
+### WebAuthn Relying Party ID (RP ID)
 
-WebAuthn uses a Relying Party Identifier (RPID) to scope passkey credentials. The RPID determines:
+WebAuthn uses a Relying Party Identifier (RP ID) to scope passkey credentials. The RP ID determines:
 
 * **Where passkeys can be used**: Passkeys are bound to the domain where they were created
 * **Security boundaries**: Prevents passkeys from being used on unauthorized domains
 * **User experience**: Users must enroll passkeys separately for each custom domain
 
 ### Per-domain enrollment
 
-With multiple custom domains, each domain has its own RPID, which means:
+With multiple custom domains, each domain has its own RP ID, which means:
 
 * A passkey enrolled on `login.brand1.com` **cannot** be used on `login.brand2.com`
 * Users who authenticate through different custom domains need to enroll passkeys for each domain
@@ -75,18 +75,18 @@ Before using passkeys with custom domains, ensure passkeys are enabled:
 
 ### Configure custom domains for passkeys
 
-Each custom domain automatically gets its own RPID:
+Each custom domain automatically gets its own RP ID:
 
-* **RPID format**: The custom domain itself (e.g., `login.example.com`)
-* **No additional configuration required**: Auth0 automatically configures the RPID for each verified custom domain
+* **RP ID format**: The custom domain itself (e.g., `login.example.com`)
+* **No additional configuration required**: Auth0 automatically configures the RP ID for each verified custom domain
 
-### Verify RPID configuration
+### Verify RP ID configuration
 
-To verify the RPID for a custom domain:
+To verify the RP ID for a custom domain:
 
 1. Navigate to **Auth0 Dashboard** > **Branding** > **Custom Domains**
 2. Select your custom domain
-3. In the domain details, the RPID will be displayed
+3. In the domain details, the RP ID will be displayed
 
 ## Implementation patterns
 

main/docs/secure/multi-factor-authentication/fido-authentication-with-webauthn.mdx

@@ -6,7 +6,7 @@ title: FIDO Authentication with WebAuthn
 The Web Authentication API (also known as WebAuthn) is a [specification](https://www.w3.org/TR/webauthn/) written by the W3C and FIDO, with the participation of Google, Mozilla, Microsoft, Yubico, and others. The API allows users to be authenticated using public key cryptography.
 
 <Warning>
-The WebAuthn RPID is currently limited to a single domain configuration and is incompatible with customers using multiple custom domains.
+The WebAuthn RP ID is currently limited to a single domain configuration and is incompatible with customers using multiple custom domains.
 </Warning>
 
 WebAuthn is the most secure and usable authentication method on the web. Some key reasons for this are: