Download OpenAPI specification:Download
This API uses OAuth2 Client Credentials flow. To obtain an access token, make a POST request to the token endpoint:
Token Request Example:
curl -X POST https://login.kount.com/oauth2/ausdppkujzCPQuIrY357/v1/token \
-H "Content-Type: application/x-www-form-urlencoded" \
-H "Authorization: Basic {API KEY}" \
-d "grant_type=client_credentials&scope=k1_integration_api"Required Parameters:
grant_type: Must be "client_credentials"scope: Must be "k1_integration_api"Use the returned access_token in API requests: Authorization: Bearer {access_token}
DocVOnboardingEventRequest - request sent to the customer's webhook_callback_uri upon change in onboarding status of the document verification session.
Fields:
| sessionId | string |
| status | string |
{- "sessionId": "string",
- "status": "string"
}{ }DocVResultsEventRequest - request sent to the customer's webhook_callback_uri upon completion of the document verification session.
Fields:
| sessionId | string |
| ocr | object |
| score | object |
| image | object |
{- "sessionId": "string",
- "ocr": { },
- "score": { },
- "image": { }
}{ }WebhookEventRequest - request sent to the customer's webhook_callback_uri upon completion of the IVS session.
Fields:
| sessionIdHash | string session_id_hash - this is something that can be ignored unless you are using IDAAS split tokens. |
| mfaType | string (v1MFAType) Default: "OTP" Enum: "OTP" "NONCE_OTH" |
| sendAttempts | string <int64> |
| verificationStatus | string (v1VerificationStatus) Default: "UNKNOWN" Enum: "UNKNOWN" "INVALID" "VERIFIED" "TERMINATED" "MESSAGE_SENT" "FAILED_AUTHORIZATION" "VERIFICATION_ATTEMPT_FAILED" UNKNOWN: The status is unknown. This is the default value. INVALID: The verification session was invalidated due to an error. VERIFIED: The verification process succeeded. TERMINATED: The verification session expired or reached the maximum number of verification or resend attempts. MESSAGE_SENT: The verification message has been sent and is awaiting action from the user. FAILED_AUTHORIZATION: The verification process has failed due to an authorization issue. VERIFICATION_ATTEMPT_FAILED: The verification attempt failed, but the session remains active for retry. |
object (v1Error) | |
| sessionId | string |
| verificationAttempts | string <int64> |
| resendStatus | string (v1ResendStatus) Default: "UNKNOWN_RESEND_STATUS" Enum: "UNKNOWN_RESEND_STATUS" "SENT" "FAILED" "PENDING" |
| autoTrustDevice | boolean |
| sentTimeStamp | string |
| channelType | string (v1MFAChannelType) Default: "SMS_OTP" Enum: "SMS_OTP" "EMAIL_OTP" "SMS_NONCE_OTH" "EMAIL_NONCE_OTH" "STANDALONE_NONCE_OTH" |
| docVerification | boolean |
| remainingSendAttempts | string <int64> |
| remainingVerificationAttempts | string <int64> |
{- "sessionIdHash": "string",
- "mfaType": "OTP",
- "sendAttempts": "string",
- "verificationStatus": "UNKNOWN",
- "error": {
- "message": "string"
}, - "sessionId": "string",
- "verificationAttempts": "string",
- "resendStatus": "UNKNOWN_RESEND_STATUS",
- "autoTrustDevice": true,
- "sentTimeStamp": "string",
- "channelType": "SMS_OTP",
- "docVerification": true,
- "remainingSendAttempts": "string",
- "remainingVerificationAttempts": "string"
}{ }x-client-id: Unique client identifier.
Example: 1234567890Content-Type: Request content type.application/jsonAuthorization: Bearer token for API access.Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...k1_integration_api) | inquiryId | string (Required) The unique, customer-generated identifier for the consumer’s original case inquiry. This should map to the original assessment that is being updated |
| authenticationId | string (Required) A Kount 360 unique identifier returned in the body of the original assessment. This may also called the case ID. |
object (v1RequestStrategy) | |
| phoneNumber | string Phone Number for the verification flows |
string Email for the verification flows |
{- "inquiryId": "223db65b-8a22-4daa-9320-98ff86371d8f",
- "authenticationId": "a43db65b-8a22-4daa-9320-98ff86371c89",
- "strategy": {
- "strategyName": "StrategyWithVerification",
- "actions": [
- {
- "method": "KBA",
- "data": {
- "resend": true,
- "questions": [
- {
- "questionId": 0,
- "answers": [
- 0
]
}
], - "otp": "123456"
}
}
], - "nextAction": true
}, - "phoneNumber": "19999999999",
- "email": "example@domain.com"
}{- "inquiryId": "223db65b-8a22-4daa-9320-98ff86371d8f",
- "authenticationId": "a43db65b-8a22-4daa-9320-98ff86371c89",
- "decision": "Allow",
- "strategy": {
- "strategyName": "StrategyWithVelocity",
- "description": "Strategy with velocity",
- "status": "active",
- "actions": [
- {
- "method": "UNKNOWN_Verification_Method",
- "status": "challenge",
- "data": {
- "questionnaireId": 0,
- "questions": [
- {
- "questionId": 0,
- "questionText": "string",
- "choiceType": {
- "type": "string"
}, - "choices": [
- {
- "choiceId": 0,
- "choiceText": "string"
}
]
}
], - "authentication": {
- "characteristics": [
- {
- "key": "key",
- "value": "value",
- "text": "text description"
}
]
}
},
}
]
}
}