The sample shows the POST /environments/{environmentId}/users/{userId}/devices operation to add a FIDO2 or U2F SECURITY_KEY device to the specified user resource.

Note: An actor making a self request must have an access token that includes the p1:create:device scope.