Skip to main content
POST
Request an OTP code

Authorizations

Authorization
string
header
required

Session JWT (from register/login) or API key (pk_...). X-API-Key: <token> is accepted as an alternative header.

Body

application/json
action
enum<string>
required
Available options:
login,
payout,
crypto_withdrawal,
transfer,
banking_operation,
card_reveal,
api_key_create,
member_add,
phone_change

Response

Challenge created; the code is on its way.

challenge_id
string<uuid>
account_id
string<uuid>
action
enum<string>
Available options:
login,
payout,
crypto_withdrawal,
transfer,
banking_operation,
card_reveal,
api_key_create,
member_add,
phone_change
channel
enum<string>
Available options:
sms,
whatsapp
phone
string

Masked phone the code was sent to.

status
enum<string>
Available options:
pending,
verified,
consumed,
expired
created_at
string<date-time>
expires_at
string<date-time>
verified_at
string<date-time>
consumed_at
string<date-time>
Last modified on July 19, 2026