FAQ | Authenticate

Utilize tyntec’s FAQs to help solve any issues you may have. Additionally, learn about cloud communications, CPaaS, SMS for business, authentication, and more. If any questions arise while reading, don’t hesitate to contact us.

Where Can I See the Status of a PIN Code/otp?

FAQs

Authenticate

Getting Started

Overview

How Can I Create My tyntec 2FA Account?

How Does the 2FA API Work?

Why Should I Use SMS for Authentication?

What Are the Benefits of Using Phone Numbers As a Digital Identifier?

What Usecases Does the 2FA API Support?

What Is the Difference Between 2FA API and tyntec’s OTP SMS API?

Can I Use the 2FA API With Any Number in the World?

How Much Does tyntec’s 2FA API Cost?

Is There a Charge for Additional Verification Attempts?

How Long Does It Take to Verify a Phone Number With tyntec’s Two-factor Authentication Codes?

How Are PIN Codes for 2FA Generated?

What Is the Length of a 2FA PIN Code/ One-time Password?

Can I Provide My Own 2FA Codes?

How Can I Retry a Verification Attempt?

What Is the Validity Period for 2FA API’s PIN Codes?

How Many Times Can a Customer Enter a PIN Code?

Where Can I See the Status of a PIN Code/otp?

How Do I Map the PIN Code/OTP the Customer Enters for the Original Request?

What Should I Do If I Haven’t Received a 2FA PIN Code?

Why Is My 2FA SMS/TTS (Text-to-Speech) Call Not in the Primary Language of the Destination Country?

What Happens If the Line Is Busy or There Is No Answer When Receiving a TTS Call?

How Do I Know Whether TTS or SMS Will Be Used?

Where can I see the status of a PIN code/OTP?

Once an OTP reaches a final state (verified, expired or failed after too many attempts), the API always returns HTTP response code “410 Gone” with the final state of this OTP, independent of the OTP code that is provided.

Final states include:

  • A successful authentication, which will return “202 Accepted” as HTTP response code for the first successful verification for this otpID

  • “403 Forbidden,” which will return once all of the allowed attempts are reached to verify the code and were all unsuccessful (three by default) or the OTP code has expired (after five minutes, by default)

After the final state, the status will always return “410 Gone” as HTTP response code with the final state provided in the response body on the “otpStatus” field and will not check the otpCode provided.

OTP status values:

  • “ACTIVE” – The OTP is still active

  • “VERIFIED” – The OTP was verified successfully

  • “EXPIRED” – The OTP expired

  • “TOO_MANY_ATTEMPTS” – The OTP validation requests exceeded the maximum allowed by the application configuration

Check tyntec’s 2FA API for more details here.