# Start the passwordless authentication flow

Starts the passwordless authentication flow by sending an email to the user with a sign-in link. When the user clicks the link, they are directed to GET /blaize/token-exchange?token=..., which authenticates them automatically.
IMPORTANT: Passwordless authentication requires the user's email to be verified. This means the user must first receive a separate verification email and click the link to confirm their email address. Verification can be triggered by sending a POST request to the appropriate endpoint.

Endpoint: POST /blaize/token-exchange
Version: 2025-07-30
Security: CookieBlaizeSession, JwtQuery, JwtHeaderXBlaizeJwt, JwtHeaderXZephrJwt, JwtBearer, JwtCookie

## Request fields (application/json):

  - `identifiers` (object, required)

  - `identifiers.email_address` (string)
    Example: "joe.blow@company.com"

  - `action` (string, required)
    Enum: "login", "register", "completeRegistration"

  - `redirect` (string)
    Either a relative path to the current site or a full URL for another site in the current tenant.


## Response 201 fields

## Response 400 fields