Verify a session handoff token and create an RP session.
POST
/api/sessions/verify
Code sample: Shell / cURL
curl --request POST \ --url https://auth.example.com/api/sessions/verify \ --header 'Content-Type: application/json' \ --data '{ "token": "session_token_123", "rp_origin": "https://app.example.com" }'Request Body required
Section titled “Request Body required ” Media type application/json
object
token
required
string
rp_origin
string format: uri
Example
{ "token": "session_token_123", "rp_origin": "https://app.example.com"}Responses
Section titled “ Responses ”Successful JSON response.
Media type application/json
object
session_id
required
string
user_id
required
string
expires_at
required
integer
verified
required
boolean
Example
{ "session_id": "sess_456", "user_id": "user_123", "expires_at": 1770086400000, "verified": true}