For security purposes, Opal tokens are for one-time use only, and expire after
30 minutes.
Body
The structure of the request body differs slightly depending on the Opal mode you are trying to use. See the Opal Modes section for more information about specific modes.Only
entity_id
or entity
is required. If both are provided, entity_id
will be ignored.The mode of the Opal flow. One of
identity_verification
, connect
, card_connect
, account_verification
or transactions
The ID of the Entity. If you provide this, entity must not be provided.
The Entity object. If you provide this, entity_id must not be provided as this will create a new entity.
The ID of the session. If you provide this, it must be for the same mode. All other fields are ignored. Sessions are long-lived stateful connections that allows a user to leave and resume their journey through Opal while maintaining the user’s data and progress. A previously created Session can be resumed by creating a new Opal Token with the previously created
session_id
in the request body.Mode parameters
- Identity Verification
- Connect
- Card Connect
- Account Verification
- Transactions
The Identity Verification object. Required when mode is
identity_verification
.