Create KYC Session
Hand off sub-account KYC to a Vobiz-hosted widget - either email the customer a signed link or redirect them inline. The sub-account-scoped equivalent of the partner KYC Sessions endpoint.
X-Auth-ID and X-Auth-Token — the same credentials used everywhere else in the API.Flow types
flow_type | Behavior | Required field |
|---|---|---|
email (default) | Vobiz emails the customer a signed link (from kyc@vobiz.ai, hosted at kyc.vobiz.ai). The session sits in email_sent until they open it. | customer_email |
redirect | The response returns a widget_url directly — redirect the customer’s browser to it. No email is sent. | redirect_url |
Body fields
| Field | Type | Required | Description |
|---|---|---|---|
account_auth_id | string | Yes | The sub-account’s auth_id (SA_…), normally equal to the {sub_auth_id} in the path. |
flow_type | string | Yes | email (default) or redirect. |
customer_email | string | Conditional | Required when flow_type is email. Where the signed link is sent. |
redirect_url | string (URI) | Conditional | Required when flow_type is redirect. The customer is returned here after verification. |
webhook_url | string (URI) | No | HTTPS endpoint Vobiz POSTs the KYC result to. Omit it and no callbacks are sent. |
expires_in_days | integer | No | Days before the link expires. Defaults to 7. |
verified_data shape, see that page — the hosted widget and status model are the same. The partner endpoint additionally accepts reminder_schedule and metadata; see the email and redirect flow walkthroughs for how those carry through to webhook payloads.Responses
422 is returned when the email flow is missing customer_email, or the redirect flow is missing redirect_url.Authorizations
Your Vobiz account Auth ID
Your Vobiz account Auth Token
Path Parameters
The sub-account's Auth ID.
"SA_XXXXXX"
Body
The sub-account's auth_id (typically equal to the path sub_auth_id).
"SA_XXXXXX"
email, redirect Required when flow_type is email.
"customer@example.com"
Required when flow_type is redirect. After verification the customer's
browser is sent to this URL.
"https://your-app.example.com/kyc/done"
HTTPS endpoint VoBiz POSTs the KYC result to. Omit it and no callbacks are sent.
"https://your-app.example.com/kyc/webhook"
30
Response
KYC session created