Overview

When you interact with the Sandbox environment, you’ll be able use the test users below to simulate different behaviors. You will simulate the possession checks utilizing the client-side SDK. No text messages will be sent and real user information will not validate - you must use the test users.

sandbox test users can only be used with project credentials. Attempting to use these test users with different project credentials will result in an unauthorized access error.

Unless specified below, you can introduce failures in the tests that would otherwise be successful:

  • If you call a step out of order, you will receive:

    • Status Code: HTTP 403

    • Response: {"code":1003,"message":"step not allowed"}

  • If a required field is missing, you will receive:

    • Status Code: HTTP 400

    • Response: {"code":1001,"message":"field 'flowType' is missing"}

Steps

These are the steps you’ll follow for each of the tests.

  • For Start:

    • Send into request:

      • flowType: use either mobile or desktop

      • phoneNumber: (use number from table above)

      • finalTargetUrl: https://www.prove.com

      • dob or last4SSN (otherwise, pass it in to Challenge request)

    • Response will return:

      • authToken

      • correlationId

      • next = v3-validate

  • For Validate:

    • Send into request:

      • correlationId (from Start response)

    • Response will return:

      • success = true

      • challengeMissing = false

      • next = v3-challenge or v3-complete

  • For Challenge (only if the previous Validate call returned: next = v3-challenge):

    • Send into request:

      • correlationId (from Start response)

      • dob or last4SSN (if still needed)

    • Response will return:

      • success = true

      • Individual information (from table above)

      • next = v3-complete

  • For Complete:

    • Send into request:

      • correlationId (from Start response)

      • Individual information (from table above)

    • Response will return:

      • success = true

      • changeDetected (true if there is a data mismatch with the Challenge response)

      • next = done

Short-Term Test User

Please temporarily use the below test user when performing initial testing with cURL or Postman. This test user intentionally skips the client-side SDK authentication to help you understand sequence of API calls; however the client-side authentication is a required integration element (it initiates the Prove possession check).

Phone NumberFirst NameLast NameAddressCityStateZipDate of BirthSSNEmail
2001004000MartinaGoodram28965 Homewood PlazaLittle RockAR722047/26/1995490959347mgoodram0@nasa.gov

After initial short-term testing, please implement the client-side SDK and utilize the remaining test users below to fully test your implementation. Please see the Quick Start Guide to better understand required components.

Prove Identity Test Users

For each of the test users, follow the steps above in the staging environment to test out your implementation to ensure it’s working properly. Please see the Outcomes Table to review scenarios to test and interpretation of success and failed states.

Key points about possession:

  • Mobile Flow Testing: When prompted for your one-time password (OTP) during mobile flow testing, you must use 1234 to simulate a successful OTP. Any other combination of numbers will simulate a failure. Please use the Benji Harper user to test that OTP setup is functioning as expected.

  • Desktop Flow Testing: You will simulate Instant Link during Desktop flow testing. You know your logic is set up correctly if your test user passes the Validate step.

Phone NumberFirst NameLast NameAddressCityStateZipDate of BirthSSNEmail
2001004009BenjiHarper27 Financial PlaceBakersfieldCA93301-242509/02/1994565252770bharperd@superstars.com
2001001699CarneyReinisch582 Coleman PointSan AntonioTX782303/3/2000166521601creinischq@php.net
2001001698EnidWildt861 Karstens CircleWashingtonDC204096/18/1996212285822ewildtp@eepurl.com

Prove Identity Outcomes and Test Scenarios

The below table provides Prove Identity outcome possibilities including which sandbox users to test with, testing notes and interpretation of each success and failed state in Production. The Prove Identity Test Users table above contains the comprehensive list of test users including mock data. If you are trying to troubleshoot Success=False in the API response, please see the next section.

Sandbox Troubleshooting Tips

Please see below table for assistance troubleshooting when Success=False in an API response. To understand what this indicates in Production, please see the Prove Identity Outcomes and Test Scenarios table above.

Server Side CallBehavior Resulting in Success=FalseTroubleshooting Tips
/startNot ApplicablePlease see Error and Status Codes page for common 400 response errors
/validateProve Identity Sandbox user intended to fail this step: Carney ReinischPlease see Test Scenario Table for which test users fail each scenario
/validateClient Side SDK Authenticate() function wasn’t called or was configured incorrectly* *Required for all sandbox users except Martina GoodramSee the client-side SDK implementation guide
/validateWrong one-time password (OTP) enteredSee the client-side SDK implementation guide
/completeFirst Name or Last Name or SSN isn’t associated with the phone number entered (you entered Cathy Blazevic’s Phone number with different last4)Please see Test Scenario Table for which test users fail each scenario

If you are encountering errors when running these test scenarios, please refer to the Error and Status Codes page.

If you’re still having issues, send your correlationId from a failing request. Use either the Support button in the Portal or contact your account representative.

Production Access

To access this functionality in Production, please contact your sales representative.

Implementation GuideProve Verified Users℠ Flow