From dd6472d4e87f823cb14a611a582afc25827cc46b Mon Sep 17 00:00:00 2001
From: Brad Fitzpatrick <bradfitz@tailscale.com>
Date: Thu, 17 Feb 2022 14:13:50 -0800
Subject: [PATCH] api: document preauthorized auth keys

Fixes #2120

Change-Id: If6a803680b544df1f70449c26fd0f5e15940226b
Signed-off-by: Brad Fitzpatrick <bradfitz@tailscale.com>
---
 api.md | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/api.md b/api.md
index 1732df414..a5cf6cb9a 100644
--- a/api.md
+++ b/api.md
@@ -317,9 +317,14 @@ Allows for updating properties on the device key.
 - Provide `false` to enable the device's key expiry. Sets the key to expire at the original expiry time prior to disabling. The key may already have expired. In that case, the device must be re-authenticated.
 - Empty value will not change the key expiry.
 
+`preauthorized`
+
+- If `true`, don't require machine authorization (if enabled on the tailnet)
+
 ```
 {
-  "keyExpiryDisabled": true
+  "keyExpiryDisabled": true,
+  "preauthorized": true
 }
 ```