search

Create Session

hashtag
Overview

The VX API provides a comprehensive solution for creating and managing verification sessions. This guide covers:

  1. Authentication - Obtain a bearer token for authorization.

  2. Create Session - Generate a verification session link.

  3. iFrame Integration (optional) - Embed the verification link and handle post message events.

hashtag
Authentication

To interact with the VX API, you must first obtain a Bearer token. This token will authenticate your application for all subsequent requests.

hashtag
Endpoint

POST https://auth.dcams.app/oauth/token

hashtag
Request Body

curl -X POST https://auth.dcams.app/oauth/token \
-H "Content-Type: application/json" \
-d '{
  "client_id": "{{client_id}}",
  "client_secret": "{{client_secret}}",
  "audience": "dcams.app",
  "grant_type": "client_credentials"
}'

hashtag
Request Details

  • client_id: Provided by your administrator, this identifies your application.

  • client_secret: A secret key provided by your administrator for authenticating your application.

  • audience: Specifies the target API, which should be "dcams.app".

  • grant_type: Always set to "client_credentials" for this type of request.

hashtag
Responses

hashtag
Create Session

After obtaining the Bearer token, you can create a verification session. This session will return a link that the user can use to complete the verification process.

hashtag
Endpoint

POST https://vx.dcams.app/api/session/create_session

hashtag
Headers

  • Authorization: Bearer {{access_token}} (where {{access_token}} is the token obtained from the Authentication step)

hashtag
Required Fields

  • email: The user's email address. This field is used as the primary identifier of a user, but the email address does not need to be real or working as we will never send the user an email.

  • age: The user's age, which must be in the format "21+" (with the plus sign to indicate "age to check and over"). NOTE: "21" is just the example, please use any value that fits your use case.

hashtag
Optional Fields

circle-info

When sending route_id, settings_id and/or brand_id as empty fielfds the default value for each that is associated with theclient_id will always be used.

  • route_id: The route ID to use for this session. If not provided, the default route associated with the client_id will be used.

  • settings_id: Specifies the settings for the session. If not provided, default settings associated with the client_id will be used.

  • brand_id: Specifies the brand for the session. If not provided, a default brand associated with the client_id will be used.

  • styles: Customize the appearance of the VX experience. See Styles for a full list of options.

  • webhook.endpoint: Provide the HTTPS endpoint that should receive VX webhook callbacks for this session. Make sure the endpoint is reachable from the public internet.

  • There are several more optional fields in the full example below.

circle-info

Webhook deliveries can be protected with either Basic Authentication credentials or an HMAC signature header. Coordinate with your Veratad representative to receive the credentials or signing secret, and validate every webhook before processing it.

hashtag
Request (Simple Example)

hashtag
Request Body (Complete Example with All Optional Fields)

For detailed styling options, see Styles.

hashtag
Responses

circle-info

PRO TIP: Use the request_id to link the session back to your database through either a webhook or a poll request. Additionally, always use the returned link value, as the domain may change at any time.

circle-exclamation

You are limited to 1,000 requests per minute to the create session endpoint. If you require a larger throughput please contact our support team.

PreviousAPI MethodsNextGet Session Result

Last updated