Skip to main content
Verify a password-account email address and create a session

Headers

x-csrf-token
string
required

CSRF token returned by /api/v1/auth/csrf and mirrored in the CSRF cookie.

Body

application/json
token
string
required
Example:

"base64url-verification-token"

Response

Email verified, session cookie set, and user returned with status=verified.

user
object
required
status
enum<string>
Available options:
authenticated,
verification_required
verificationRequired
boolean