session_id, verification_token, h5_link, callback_url, expires_in, and language. The internal credential is never returned. The session, token, and H5 link expire after 120 seconds.
Send your user to h5_link. When the H5 flow finishes, TokenLab redirects to your original callback_url with these query parameters:
| Parameter | Meaning |
|---|---|
session_id | TokenLab verification session ID. |
verification_token | TokenLab opaque token used to bind the result. |
verification_status | succeeded or failed. |
result_code | Result code forwarded for diagnostics. |
verification_status is succeeded, call Bind Real-Person Verification Result. Use the test console when you need to manually inspect the redirect and binding flow.