Skip to main content
1

Complete Step 2: Authentication

Begin by implementing Step 2: Authentication to authenticate the user’s device. This step is crucial as it establishes a trusted connection between the user and their phone number, which is the foundation for the Verified Users solution.Flowchart showing the Verified Users authentication workflow
This step must be complete before proceeding with Verified Users.
2

Gather Required Inputs

Collect the required customer information from your CRM or database:
  • Phone number
  • First name
  • Last name
3

Call the Verify Endpoint

Make a request to the /v3/verify endpoint including the Authorization header. Generate a bearer token as outlined on the Authentication page.
cURL
curl -X POST "https://platform.uat.proveapis.com/v3/verify" \
-H "Authorization: Bearer <YOUR_ACCESS_TOKEN>" \
-H "Content-Type: application/json" \
-d '{
    "verificationType": "verifiedUser",
    "firstName": "Elena",
    "lastName": "Coldman",
    "phoneNumber": "2001004053",
    "clientRequestId": "test-request-001",
    "clientCustomerId": "test-customer-001"
}'
Replace <YOUR_ACCESS_TOKEN> with your acquired access token.
Include the following required parameters:
  • phoneNumber: the phone number of the customer.
  • firstName: the first name of the customer.
  • lastName: the last name of the customer.
  • verificationType: the type of verification performed. Set this value to verifiedUser.
  • clientRequestId: client-generated unique ID for a specific session.
Always use unique clientRequestId values for each request to enable proper tracking and troubleshooting.
The optional parameters:
  • emailAddress: the email address of the customer.
  • ipAddress: the IP address of the customer’s device.
  • userAgent: the user agent of the customer.
  • clientCustomerId: the client-generated unique ID for a specific customer.
  • clientHumanId: a client-generated unique ID for a consumer across business lines.
  • proveId: the Prove ID associated with the customer, if known.
4

Process the Response

The response includes comprehensive identity information and verification results:
Example JSON Response
{
    "success": "true",
    "correlationId": "12e5bf83-f2e5-4354-83a5-ed811c8aeb49",
    "clientRequestId": "test-001",
    "phoneNumber": "2001004053",
    "assuranceLevel": "AL2",
    "clientCustomerId": "test-customer-001",
    "proveId": "41570934-6d6b-476d-9425-3eaf305cf2e5",
    "provePhoneAlias": "4B2C41FC4VKDEO100F960011D0AD4A8050MEK19P4SF9PD23EFE27CD2C76A6FAA8375E60AC0550604F6G32D9ED60E06262CCC570F3C15F2D16900184E",
    "identity": {
        "firstName": "Elena",
        "lastName": "Coldman",
        "assuranceLevel": "AL2",
        "reasons": [
          "AL2a"
        ]
    },
    "evaluation": {
        "authentication": {
            "result": "pass"
        },
        "risk": {
            "result": "pass"
        }
    }
}
  • success: the result of the verification.
  • correlationId: the unique ID that Prove generates for the flow.
  • clientRequestId: the client-generated unique ID for a specific session, provided in the request.
  • phoneNumber: the phone number provided in the request.
  • proveId: the unique Prove-assigned ID tied to the consumer.
  • provePhoneAlias: the unique Prove-assigned ID tied to the phone number.
  • identity: the verified identity information. This object has the following properties:
  • evaluation: object containing the results of the authentication and risk evaluations. Refer to the Global Fraud Policy for more details.
Optional parameters included in the response if provided in the request:
  • clientCustomerId: the client-generated unique ID for a specific customer.
  • clientHumanId: a client-generated unique ID for a consumer across business lines.
Best Practices
  • Check the success field to handle different verification outcomes appropriately.
  • Save the proveId and correlationId for future reference and to enable cross-domain linking if needed.
  • Use assurance levels to implement adaptive security policies based on transaction risk.

Sandbox testing

Test users

Use Verified Users project credentials with Verified Users sandbox test users only. Attempting to use these test users with different project credentials results in an unauthorized access error.
The following test users are available for testing Verified Users using the /v3/verify endpoint in the Sandbox environment. Use these test users to simulate different verification scenarios and outcomes.
Phone NumberFirst NameLast NameVerification TypeExpected Outcome
2001004053ElenaColdmanverifiedUserSuccess
2001004054AlfNovotniverifiedUserFailed
Use these test phone numbers exactly as shown. The sandbox environment doesn’t validate real customer information.

Testing steps

Use test user Elena Coldman to verify a successful verification:
cURL
curl -X POST "https://platform.uat.proveapis.com/v3/verify" \
  -H "Authorization: Bearer YOUR_ACCESS_TOKEN" \
  -H "Content-Type: application/json" \
  -d '{
    "verificationType": "verifiedUser",
    "firstName": "Elena",
    "lastName": "Coldman",
    "phoneNumber": "2001004053",
    "clientRequestId": "test-request-001",
    "clientCustomerId": "test-customer-001"
  }'
Expected response:
JSON
{
    "success": "true",
    "correlationId": "a1fb77c4-b5a6-44bc-bc78-b5939dd7c35a",
    "clientRequestId": "test-request-001",
    "phoneNumber": "2001004053",
    "identity": {
        "firstName": "Elena",
        "lastName": "Coldman",
        "assuranceLevel": "AL2",
        "reasons": [
            "AL2a"
        ],
        "clientCustomerId": "test-customer-001",
        "proveId": "b7e54823-0068-4e23-9e07-60d382518bcf",
        "provePhoneAlias": "09717e90-997d-448b-a1d6-9ef0431b3472",
        "clientHumanId": ""
    },
    "evaluation": {
        "authentication": {
            "result": "pass"
        },
        "risk": {
            "result": "pass"
        }
    }
}