Verify Token | API Reference | Descope Documentation

POST

/v1/auth/magiclink/verify

Verify the magic link token from the end user

Verify that the magic link token in the URL clicked by the end user matches and has not expired. This endpoint completes the magic link flow for:

sign up
- Sign-Up via email
- Sign-Up via SMS
sign-in
- Sign-In via email
- Sign-In via SMS
sign-in with auto sign-up
- Sign-In with Auto Sign-up via email
- Sign-In with Auto Sign-up via SMS
update data
- update email
- update phone number

Next Steps

The response object will contain the user's details including the session and refresh JWTs.

Endpoint Authentication

Use authorization bearer header with the following format:

Authorization: Bearer \<Project ID\>

Authorization

`Authorization`
Required
Bearer <token>

In: header

Request Body

`token`string

Status code	Description
`200`	OK

curl -X POST "https://api.descope.com/v1/auth/magiclink/verify" \
  -d '{
  "token": "string"
}'

{
  "sessionJwt": "string",
  "refreshJwt": "string",
  "cookieDomain": "string",
  "cookiePath": "string",
  "cookieMaxAge": 0,
  "cookieExpiration": 0,
  "user": {
    "loginIds": [
      "string"
    ],
    "userId": "string",
    "name": "string",
    "email": "string",
    "phone": "string",
    "verifiedEmail": true,
    "verifiedPhone": true,
    "roleNames": [
      "string"
    ],
    "userTenants": [
      {
        "tenantId": "string",
        "roleNames": [
          "string"
        ],
        "tenantName": "string"
      }
    ],
    "status": "string",
    "externalIds": [
      "string"
    ],
    "picture": "string",
    "test": false,
    "customAttributes": {},
    "createdTime": 0,
    "TOTP": false,
    "SAML": false,
    "OAuth": {
      "property1": false,
      "property2": false
    },
    "webauthn": true,
    "password": true,
    "ssoAppIds": [
      "string"
    ],
    "givenName": "string",
    "middleName": "string",
    "familyName": "string",
    "editable": true
  },
  "firstSeen": true,
  "idpResponse": {
    "samlResponse": "string",
    "samlGeneratedUser": "string",
    "samlGeneratedRoles": "string",
    "oidcResponse": "string",
    "oidcGeneratedUser": "string",
    "oidcGeneratedRoles": "string"
  }
}

Was this helpful?

Verify the magic link token from the end user

Next Steps

See Also

Endpoint Authentication

Try it

Authorization

`Authorization`
Required
Bearer <token>

Request Body

`token`string

Verify the magic link token from the end user

Next Steps

See Also

Endpoint Authentication

Try it

Authorization

AuthorizationRequiredBearer <token>

Request Body

tokenstring

Response

Typescript

`Authorization`
Required
Bearer <token>

`token`string