Liveness + Identity Verification + Behavior Alert

In this section, you will find the specifics of creating a process that has Liveness + Identity Verification + Behavior Alert as a capabilities

Introduction

In this section, you will find detailed documentation on the operation of the endpoints related to the capabilities Liveness + Identity Verification + Fraudster Profile Detection, used together.

These are two synchronous capabilities (Liveness + Identity Verification) integrated with one asynchronous capability (Fraudster Profile Detection). In other words, to retrieve all responses, it will be necessary to Get the Process Result.

For this integration, it will be necessary to consume two endpoints described in this documentation, which can also be combined with the use of Webhooks.

The capabilities of the Unico IDCloud platform via Client are managed through API Keys—used as a parameter in the request headers—that define the access scope. As a prerequisite, you must have an API Key configured with the capabilities Liveness + Identity Verification + Behavior Alert, ensuring dedicated and secure access to the resource.

Talk to your project manager to obtain the API Key with this configuration.

Getting started

Your API requests are authenticated using an access token. Any request that does not include a valid access token will return an error.

You can learn more about generating an access token here.

Endpoints:

UAT: https://api.id.uat.unico.app/processes/v1;
Production: https://api.id.unico.app/processes/v1.

CreateProcess

Create Process

Endpoint to create a new process for Liveness + Identity Verification + Behavior Alert in by Client.

POSThttps://api.id.uat.unico.app/processes/v1/

Header parameters

Body

subject*object

User information.

useCase*string

Use case for the operation.

Example: "Onboarding"

subsidiaryIdstring

The ID of the branch where the process will be created. If there is only one branch associated with the service account, this parameter is not required. If there is a separation of processes by branch, you will receive the branch IDs from the Unico team.

Example: "60837cd3-ed3c-4038-ad7c-0a85ad64b03a"

imageBase64*string

Encrypted file generated by the SDK or Base64 (if not using Liveness).

Example: "/9j/4AAQSkZJR..."

Response

Process successfully created.

Body

idstring

Process ID.

Example: "80371b2a-3ac7-432e-866d-57fe37896ac6"

statusenum

Process status. Possible values: '1' - In processing; '4' - Canceled (e.g., timeout); '5' - Error.

Example: 1

145

unicoIdobject

Information about identity verification.

livenessenum

Liveness result. Possible values: '1' - Liveness approved; '2' - Liveness rejected.

Example: 1

Request

const response = await fetch('https://api.id.uat.unico.app/processes/v1/', {
    method: 'POST',
    headers: {
      "Authorization": "text",
      "APIKEY": "text",
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "subject": {
        "code": "12345678909",
        "name": "Luke Skywalker"
      },
      "useCase": "Onboarding",
      "imageBase64": "/9j/4AAQSkZJR..."
    }),
});
const data = await response.json();

Response

{
  "id": "80371b2a-3ac7-432e-866d-57fe37896ac6",
  "status": 1,
  "unicoId": {
    "result": "inconclusive"
  },
  "liveness": 1
}

Important:

If the response for the Identity Verification capability returns unicoId = yes, this result already includes Liveness (i.e., the liveness parameter will not be included in the response);
At the time of process creation, the response will not return the parameter identityFraudsters.result. This parameter will only be provided when Getting the Process Result, once the process is completed (status = 3);
To use the Liveness capability, it is mandatory to use our SDKs;
- It is possible to use the Identity Verification capability without Liveness. For this use case, the liveness value will always return as liveness = 1. In this scenario, no Liveness validation is performed, not even passive validation.
If an error occurs during biometric processing, the request will return a status code = 200, and the process will return a status = 5, as shown in the example below:
```
  {
  "id": "80371b2a-3ac7-432e-866d-57fe37896ac6",
  "status": 5
  }
```

Tips:

When implementing your business rules, always validate the final statuses of the processes (3, 4, 5). To validate the response of IDCloud capabilities, only consider status = 3 for your decision-making process.

GetProcess

Get Process

Endpoint to get the result of a process for Liveness + Identity Verification + Behavior Alert in by Client.

GEThttps://api.id.uat.unico.app/processes/v1/{processId}

Path parameters

processId*string

Process ID.

Header parameters

Response

Process information successfully retrieved.

Body

idstring

Process ID.

Example: "2b034568-dfaf-463f-94fb-18ed93c312e8"

statusenum

Process status. Possible values: '1' - In processing; '3' - Completed; '4' - Canceled (e.g., timeout); '5' - Error.

Example: 3

1345

unicoIdobject

Information about identity verification.

livenessenum

Liveness result. Possible values: '1' - Liveness approved; '2' - Liveness rejected.

Example: 1

identityFraudstersobject

Information about Behavior Alert.

Request

const response = await fetch('https://api.id.uat.unico.app/processes/v1/{processId}', {
    method: 'GET',
    headers: {
      "Authorization": "text",
      "APIKEY": "text"
    },
});
const data = await response.json();

Response

{
  "id": "2b034568-dfaf-463f-94fb-18ed93c312e8",
  "status": 3,
  "unicoId": {
    "result": "inconclusive"
  },
  "liveness": 1,
  "identityFraudsters": {
    "result": "inconclusive"
  }
}

In the v2 endpoint (/processes/v2/{id}), we also return additional user information, as shown in the example below:

"processAdditionalInfo": {
      "transactionId": "2ed76ac5-8fd7-4477-839d-92bedd7e9fd5",
      "personName": "Nome da pessoa",
      "personDocument": "Número do documento da pessoa",
      "personImage": "URL assinada da imagem da pessoa",
      "finishedAt": "2024-10-04T18:53:17.028228"
  }
}

Attention:

When making a GET request for a process with status = 5 (error), the return status code will be 410 (Gone) instead of 200 (Success);
The Identity Verification and Fraudster Profile Detection capabilities are entirely independent. To implement your business rules, make sure to analyze the meaning of each response.

Tips:

When implementing your business rules, always validate the final statuses of the processes (3, 4, 5). To validate the response of IDCloud capabilities, only consider status = 3 for your decision-making process;
To improve the performance of your operation, you can use our Webhooks and only get the results of processes that have a finalized status;
For more details on the scenarios you might receive in the response, refer to the Response Scenarios section;
For more information about possible errors for this endpoint, refer to the Errors section.

Still need help?

Didn't find something or still need help? If you're already a client or partner, you can reach out through our Help Center.

AnteriorLiveness + Identity Verification + Risk Score PróximoLiveness + Identity Verification + Behavior Alert + Risk Score

Atualizado há 3 dias