POSTVerify Sender OTP

Verify the sender OTP to authenticate the DigiKhata wallet and return the sender's profile and balance.

POST/customer/payment/ppi-digikhata/sender/{customer_id}/otp/verify

Validates the OTP issued by Get Sender Information / Onboard Sender / Generate Sender OTP. For an existing sender the response returns the full wallet customer_profile (limits, balance, KYC state). For a new sender the flow continues to Aadhaar validation (Aadhar Validation Pending).

Path parameters

Field	Type	Required	Description
`customer_id`	string	required	Sender's 10-digit mobile number.e.g. 8617567988

customer_idstringRequired

Sender's 10-digit mobile number.

example: 8617567988

Body parameters

Field	Type	Required	Description
`initiator_id`	string	required	Registered mobile number of the API user (see Platform Credentials).e.g. 9962981729
`user_code`	string	required	User code of the retailer/agent the service is run for.e.g. 20810200
`client_ref_id`	string	optional	Unique reference id per API call, generated by your system.e.g. REQ-20260101-001
`otp`	integer	required	OTP received from Get Sender Information, Onboard Sender, or Generate Sender OTP.e.g. 123456
`otp_ref_id`	integer	required	otp_ref_id received from Get Sender Information, Onboard Sender, or Generate Sender OTP.e.g. 66748392

initiator_idstringRequired

Registered mobile number of the API user (see Platform Credentials).

example: 9962981729

user_codestringRequired

User code of the retailer/agent the service is run for.

example: 20810200

client_ref_idstringoptional

Unique reference id per API call, generated by your system.

example: REQ-20260101-001

otpintegerRequired

OTP received from Get Sender Information, Onboard Sender, or Generate Sender OTP.

example: 123456

otp_ref_idintegerRequired

otp_ref_id received from Get Sender Information, Onboard Sender, or Generate Sender OTP.

example: 66748392

Headers

Field	Type	Required	Description
`developer_key`	string	required	Static API key issued to your account after KYC.
`secret-key`	string	required	Dynamic per-request signature: base64(HMAC-SHA256(timestamp, base64(access_key))).
`secret-key-timestamp`	string	required	Current time in milliseconds since UNIX epoch, used to compute secret-key. Must match server time.
`content-type`	string	required	application/jsone.g. application/json

developer_keystringRequired

Static API key issued to your account after KYC.

secret-keystringRequired

Dynamic per-request signature: base64(HMAC-SHA256(timestamp, base64(access_key))).

secret-key-timestampstringRequired

Current time in milliseconds since UNIX epoch, used to compute secret-key. Must match server time.

content-typestringRequired

application/json

example: application/json

Responses

statusnumber
Primary success indicator (0 = success).
messagestring
Human-readable response / error message.
response_status_idnumber
Granular status id; see the shared error-codes table.
response_type_idnumber
A unique id for every possible response shape (success or error) — useful for client logic branching and analytics.
dataobject
API-specific response payload.
- customer_profileobject
  Sender's wallet profile — limits, balance, KYC state, and usage chart.
  - namestring
    Registered name of the sender.
  - mobilestring
    Sender's mobile number.
  - total_monthly_limitstring
    Total monthly transfer limit (INR).
  - next_allowed_limitstring
    Remaining transfer limit for the period (INR).
  - balancestring
    Current wallet balance (INR).
  - kyc_statenumber
    KYC completion state.
- sender_namestring
  Registered name of the sender.