Introduction
Identity verification is critical for secure onboarding in financial, healthcare, and regulated digital services. Veriff offers a powerful API-first solution that helps businesses automate identity verification with high accuracy and compliance. In this guide, we’ll walk through how to set up and integrate Veriff into your application step by step. (Veriff Dev Documentation)
🚀 What is Veriff Integration?
Veriff integration refers to the configuration inside the Veriff Customer Portal that lets your app communicate with Veriff’s APIs. Each integration has its own API key and settings, and can be either a test integration for trial or a live integration for production use. (Veriff Dev Documentation)
🔑 Step 1: Create an Integration
- Log in to the Veriff Customer Portal.
- Navigate to All integrations.
- Click Add Integration and enter a name.
- Choose Test or Live based on your environment.
- Save the integration and note your API keys (public and shared secret). (Veriff Dev Documentation)
Test integrations let you experiment without billing, while live ones count towards paid sessions and provide real decisions. (Veriff Dev Documentation)
🔌 Step 2: Generating a Verification Session
Once your integration is ready, you need to create a verification session via the API. A session holds the user’s verification lifecycle and returns a session URL where the user will complete identity validation. (Veriff Dev Documentation)
To create a session, send a POST to:
POST https://<base-url>/v1/sessionsInclude:
verification.vendorData(e.g., your user ID)verification.callback(your webhook URL)- Proper headers:
X-AUTH-CLIENTandX-HMAC-SIGNATURE(signed with your shared secret)
The response will include:
- A unique session ID
- A session URL for redirecting users
- A session token for client SDKs if needed (Veriff Dev Documentation)
🔄 Step 3: Handling Webhooks
Veriff uses webhook callbacks to notify your app about verification results (such as approved or declined). Configure your webhook URL in the portal and validate incoming signatures using your shared secret to ensure secure event handling. (Veriff Dev Documentation)
🧪 Step 4: Uploading Media & Submission (Advanced API Flow)
If you choose full API instead of a web redirect:
- Create a session
- Upload user media (selfie, document photos)
- Patch the session to change its status to
submitted - Wait for final decision via webhook or API query (Veriff Dev Documentation)
This gives you full control over the media upload process. (Veriff Dev Documentation)
🛡 Security Best Practices
- Always validate webhook signatures. (Veriff Dev Documentation)
- Use HTTPS for your callback endpoints. (Veriff Dev Documentation)
- Protect API keys and shared secrets server-side. (Veriff Dev Documentation)
📌 Summary
Veriff’s API and web SDKs make it easy to automate identity verification. By setting up an integration, generating verification sessions, and securely handling webhooks, you can enhance onboarding, reduce fraud, and remain compliant with regulations such as KYC and AML.
All Rights Reserved © 2026