Mint SDK Transaction Token
Mint a short-lived scoped token your app passes to the Didit SDKs so they can submit transactions directly from the end-user’s device via POST /v1/transactions/. The token is bound to one vendor_data (your user id): every transaction submitted with it has its subject identity enforced server-side from that binding, so a tampered client cannot submit on behalf of another user. Mint tokens from your backend - never ship the API key itself in an app. camelCase aliases (vendorData, ttlSeconds, maxUses) are also accepted.
Authorizations
Body
Your internal identifier for the end user this token is scoped to. Enforced as the subject identity of every transaction submitted with the token.
"user-042"
Token lifetime in seconds. Defaults to 900 (15 minutes); maximum 86400 (24 hours).
x <= 86400Maximum number of successful submissions allowed with this token. Omit or null for unlimited uses within the TTL.