The Verification Sessions API
Learn more about the Verification Sessions API that powers Stripe Identity.
Use the Verification Session API to securely collect information and perform verification checks. This API tracks a verification, from initial creation through the entire verification process, and shows verification results upon completion.
For a step-by-step guide on using the Verification Session API to verify your users’ identity document, follow the related guide: Verify your users’ identity documents.
Creating a VerificationSession 
When you create the VerificationSession, determine which verification check to perform by specifying the session type:
- document - Verify the authenticity and ownership of government-issued identity documents. Can also include a selfie check.
- id_number - Verify a user’s name, date of birth and national ID number.
Best practices
If the verification process is interrupted and resumes later, attempt to reuse the same VerificationSession instead of creating a new one. Each VerificationSession has a unique ID that you can use to retrieve it. In your application’s data model, you can store the VerificationSession’s ID to facilitate retrieval.
The benefit of reusing the VerificationSession is that the object helps track any failed verification attempts. If any of the checks fail, the VerificationSession will have a requires_ status.
We recommend that you provide an idempotency key when creating the VerificationSession to avoid erroneously creating duplicate VerificationSessions for the same person. This key is typically based on the ID that you associate with the verification in your application, like a user reference.
Passing the client secret to the frontend
The VerificationSession contains a client secret, a key that’s unique to the individual VerificationSession. The front end uses the client secret to complete the verification.
To use the client secret, you must obtain it from the VerificationSession on your server and pass it to the frontend. You can retrieve the client secret from an endpoint on your server using the browser’s fetch function on the client. This approach is generally most suitable when the client is a single-page application, especially one built with a modern frontend framework such as React.
This example shows how to create the server endpoint that serves the client secret:
This example demonstrates how to fetch the client secret with JavaScript on the client side:
(async () => { const response = await fetch('/create-verification-session'); const {client_secret: clientSecret} = await response.json(); // Call stripe.verifyIdentity() with the client secret. })();
Remarque
The client secret is a sensitive token that you can use to complete the verification. Don’t log it, embed it in URLs, or expose it to anyone but the user that you’re verifying. Make sure that you have TLS on any page that includes the client secret.
Accessing verification results
Submitting and processing a VerificationSession updates the session status and creates a VerificationReport object. This normally happens within a few minutes.
Once all of the verification checks have passed, the status changes to verified. You can expand the verified_outputs field to see the verified data.
{ "id": "vs_jtiNnX1hIpl8r14jeAOCbryB", "object": "identity.verification_session", "created": 1610744321, "last_error": null, "last_verification_report": "vr_i2FhToc7O4ylwo8hOEeTliaN", "livemode": true, "metadata": {}, "options": { "document": {}, }, "status": "verified", "type": "document", "redaction": null, "url": null, "verified_outputs": { "first_name": "Jenny", "last_name": "Rosen", "address": { "line1": "1234 Main St.", "city": "San Francisco", "state": "CA", "postal_code": "94111", "country": "US" }, "id_number_type": null } }
If any of the verification checks fail, the session will have a requires_ status. Verification failure details are available in the session last_error hash. The last_error.code value can be used to programmatically handle common verification failures. The last_error.reason will contain a string that explains the failure reason and can be shown to your user.
{ "id": "vs_wPeOfjWI1FQf8m3ytTKNS18T", "object": "identity.verification_session", "created": 1610744321, "last_error": { "code": "document_expired", "reason": "The document is expired.", }, "last_verification_report": "vr_v5nrvWImKR9Rl2pBrPGxqUO6", "livemode": true, "metadata": {}, "options": {}, "status": "requires_input", "type": "document", "redaction": null, "url": null, }
If you want your user to attempt verification again, you’ll need to Retrieve the VerificationSession to get a fresh URL or client secret to pass to your client.
Learn how to access sensitive verification results
Cancelling a VerificationSession
You can cancel a VerificationSession at any point before it’s processing or verified. This invalidates the VerificationSession for future submission attempts, and can’t be undone. The session will have a canceled status.
Redacting a VerificationSession
One of the reasons that you might want to redact a verification session is if you receive a data deletion request from your user. You can redact a session to ensure collected information is no longer returned by the Stripe API or visible in Dashboard. You can still retrieve redacted sessions with the API but you can’t update them. Sessions can be redacted from the Dashboard or through the API:
Redacted sessions show placeholder values for all fields that previously contained personally identifiable information (PII). The session includes a redaction.status field indicating the status of the redaction process. An identity.verification_session.redacted webhook will be sent when the session is redacted. Please note redaction can take up to 4 days.
If a VerificationSession that has been redacted is retrieved with PII fields expanded, then these fields will still appear in the response but their values will not contain any PII. For example, here is a response that has expanded the verified_ and verified_ fields on a redacted VerificationSession.
{ "id": "vs_JxSMB3MwcUAS1TXmhpQ6XuXW", "object": "identity.verification_session", "created": 1610744321, "last_error": null, "last_verification_report": "vr_X47ZmdW9sblf7Rd0p33VCmt7", "livemode": true, "options": {}, "status": "verified", "type": "document", "url": null, "client_secret": null, "redaction": { "status": "redacted" }, "verified_outputs": { "first_name": "[redacted]", "last_name": "[redacted]", "dob": { "year": 1, "month": 1, "day": 1 }, "address": { "line1": "[redacted]", "city": "[redacted]", "state": "[redacted]", "postal_code": "[redacted]", "country": "US" }, "id_number_type": null }, "metadata": {} // Metadata will also be redacted }
Any VerificationReports, Events, and Request Logs associated with the VerificationSession are also redacted and File contents are no longer downloadable.
If the VerificationSession is in the processing state you must wait until it finishes before redacting it. Redacting a VerificationSession with requires_ status automatically cancels it.
Storing information in metadata
Stripe supports adding metadata to the VerificationSession object. Metadata isn’t shown to customers or factored into whether a verification check succeeds or fails.
Through metadata, you can associate other information—meaningful to you—with Stripe activity. Any metadata you include is viewable in the Dashboard (for example, when looking at the page for an individual session), and is also available in common reports. As an example, you can attach your application’s user ID to the VerificationSession used to verify that user. Doing so allows you, or your team to easily reconcile verifications in Stripe to users in your system.
We recommend you don’t store any sensitive information (PII, ID numbers, and so on) in session metadata. Metadata is removed when you redact a VerificationSession.
Session events
Events are created every time a session changes status. Here’s a complete list of the VerificationSession event types:
| Event type | Description |
|---|---|
identity. | The session was created. |
identity. | The user has successfully submitted their information, and verification checks have started processing. |
identity. | Processing of all the verification checks have completed, and they’re all successfully verified. |
identity. | Processing of all the verification checks have completed, and at least one of the checks failed. |
identity. | The session has been canceled and future submission attempts have been disabled. This event is sent when a session is canceled or redacted. |
identity. | The session was redacted. You must create a webhook endpoint which explicitly subscribes to this event type to access it. Webhook endpoints which subscribe to all events will not include this event type. |
You might want to take action in response to certain events, such as emailing your user when a verification fails or succeeds.
Stripe recommends that you listen for events with webhooks.