Request Body The same email or phone number used in the login request
The 6-digit OTP code sent to the customer
The method ID returned from the login-customer endpoint
Request - Email OTP
Request - Phone OTP
{ "identifierString" : "customer@example.com" , "otp" : "123456" , "methodId" : "email-test-12345678-1234-1234-1234-123456789012" }
{ "token" : "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJ1c2VyLXRlc3QtMTIzNDU2NzgtMTIzNC0xMjM0LTEyMzQtMTIzNDU2Nzg5MDEyIiwiaWF0IjoxNzA1MzE4ODAwLCJleHAiOjE3MDUzMjI0MDB9.example-signature" }
The returned token is a JWT that must be included in the Authorization: Bearer {token} header for subsequent authenticated requests to customer endpoints.
