Skip to main content
POST
cURL

Authorizations

x-api-key
string
header
required

Body

application/json
email
string<email>
required

Email used during POST /programmatic/register/.

Example:

"you@yourdomain.com"

code
string
required

6-character alphanumeric code from the verification email. Codes expire 10 minutes after the most recent code was sent.

Required string length: 6
Example:

"A3K9F2"

Response

Email verified. The response contains tokens for this auth API plus the brand-new application's client_id and api_key. Persist the api_key securely — it is the long-lived credential used by every verification API call.

access_token
string

RS256-signed JWT. Use as Authorization: Bearer <token> for Account Management endpoints on apx.didit.me/auth/v2.

refresh_token
string

Refresh token paired with the access token.

expires_in
integer

Lifetime of the access token in seconds (default 86400).

Example:

86400

organization
object

Minimal organization shape returned inline by POST /programmatic/verify-email/.

application
object

Minimal application shape returned inline by POST /programmatic/verify-email/. Persist the api_key immediately.