GETValidate OTP-Verification-Token
Validate an otp_verification_token as proof that OTP verification happened within the 5-minute time limit.
Validates the authenticity of an otp_verification_token issued by the Verify OTP API, proving the OTP verification was actually performed within its 5-minute validity window. Returns status = 0 when the token is valid; a timed-out or tampered/invalid token returns status = 1 with a descriptive message.
Query parameters
| Field | Type | Required | Description |
|---|---|---|---|
initiator_id | string | required | Registered mobile number of the API user (see Platform Credentials).e.g. 9962981729 |
otp_verification_tokenOTP Verification Token | string | required | The signed JWT received from the Verify OTP API.e.g. eyJ0eXAiOiJKV1QiLCJ...5aXdrqrNcEbhfYfDsI |
initiator_idstringRequiredRegistered mobile number of the API user (see Platform Credentials).
example: 9962981729
otp_verification_tokenstringRequired· OTP Verification TokenThe signed JWT received from the Verify OTP API.
example: eyJ0eXAiOiJKV1QiLCJ...5aXdrqrNcEbhfYfDsI
Headers
| Field | Type | Required | Description |
|---|---|---|---|
developer_key | string | required | Static API key issued to your account after KYC. |
secret-key | string | required | Dynamic per-request signature: base64(HMAC-SHA256(timestamp, base64(access_key))). |
secret-key-timestamp | string | required | Current time in milliseconds since UNIX epoch, used to compute secret-key. Must match server time. |
content-type | string | required | application/jsone.g. application/json |
developer_keystringRequiredStatic API key issued to your account after KYC.
secret-keystringRequiredDynamic per-request signature: base64(HMAC-SHA256(timestamp, base64(access_key))).
secret-key-timestampstringRequiredCurrent time in milliseconds since UNIX epoch, used to compute secret-key. Must match server time.
content-typestringRequiredapplication/json
example: application/json
Responses
statusnumberPrimary success indicator (0 = success).
messagestringHuman-readable response / error message.
response_status_idnumberGranular status id; see the shared error-codes table.
response_type_idnumberA unique id for every possible response shape (success or error) — useful for client logic branching and analytics.
dataobjectAPI-specific response payload.
client_ref_idstringUnique reference id for the original OTP flow, echoed back.
otp_verification_tokenstringThe token that was validated, echoed back.
initiator_idstringRegistered mobile number of the API user that initiated the call.
mobilestringThe mobile number the token certifies as verified.
tidstringUnique transaction id for this validation.