Verify OTP and return customer session

curl --request POST \
  --url https://api.zupy.com/api/v2/auth/verify-otp/ \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "identifier": "<string>",
  "otp_code": "<string>"
}
'

{
  "customer_id": "2awTHloSJX7kGGprFerOOsvABcd",
  "is_new": false,
  "otp_session": "abc123def456...",
  "full_name": "João Silva",
  "points_balance": 150,
  "tier": "silver"
}

POST

api

auth

verify-otp

Verify OTP and return customer session

curl --request POST \
  --url https://api.zupy.com/api/v2/auth/verify-otp/ \
  --header 'Content-Type: application/json' \
  --header 'X-API-Key: <api-key>' \
  --data '
{
  "identifier": "<string>",
  "otp_code": "<string>"
}
'

{
  "customer_id": "2awTHloSJX7kGGprFerOOsvABcd",
  "is_new": false,
  "otp_session": "abc123def456...",
  "full_name": "João Silva",
  "points_balance": 150,
  "tier": "silver"
}

Authorizations

X-API-Key

string

header

required

API key for partner access via APISIX key-auth plugin

Headers

X-API-Key

string

required

Partner API key

Body

identifier

string

required

Phone (+5511...), email, or CPF

otp_code

string

required

6-digit OTP code

Response

customer_id

string

required

Customer ID (KSUID or user PK)

is_new

boolean

required

True if customer was just created

otp_session

string

required

Session token (30min TTL) for subsequent OTP-protected requests

full_name

string

required

Customer full name

points_balance

integer

required

Current points balance

tier

string | null

required

Loyalty tier

Request OTP for customer verification List companies

Authentication

Companies

Customers

Loyalty Programs

Rewards

Wallet

Webhooks

Verify OTP and return customer session

Authorizations

Headers

Body

Response