JWT Authentication

Authenticate (JWT)

Authenticate a User using JWT. This endpoint is used to authenticate users who have logged in using JWT. For more details, see our Authentication Methods guide. Refer to the Jwt Auth template script for implementation guidance.

POST
/api/oc/v1/authenticate

Request Body

application/jsonRequired
authDataRequiredobject
sessionDataRequiredobject
sessionPkClientSignatureRequiredstring

Client signature of the session public key

sessionDataUserSignatureRequiredstring

User signature of the session data

curl -X POST "https://sandbox-api.okto.tech/api/oc/v1/authenticate" \
  -H "Content-Type: application/json" \
  -d '{
    "authData": {
      "idToken": "Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6IjE2YjY0YzQwLTI3YjItNDk5Ny04N2QyLTc4ZDIxM2Q1Mjg0YSIsInR5cCI6IkpXVCJ9.eyJhenAiOiIxMDI1NjY2MjYyMzQ",
      "provider": "client_jwt"
    },
    "sessionData": {
      "nonce": "7c9c12c4-ba28-4637-aae4-68aa2bcfb628",
      "clientSWA": "0xd4397B97cFe9Abbe727cEAf169bCa8bcF72f4aE9",
      "sessionPk": "0x0414ce1cc61dc1a2db826943a3624be78edf50a7d2a80d6e0588b41ab8fd5073dced72e3be5e78e0b45ef99c26e94fe6e20736592bff52d760d006f95ef51cd4f5",
      "maxPriorityFeePerGas": "0xBA43B7400",
      "maxFeePerGas": "0xBA43B7400",
      "paymaster": "0x74324fA6Fa67b833dfdea4C1b3A9898574d076e3",
      "paymasterData": "0x000000000000000000000000e8201e368557508bf183d4e2dce1b1a1e0bd20fa00000000000000000000000000000000000000000000000000000000683ee23500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000004139ef17c6880048f6b0480fd4d4b0e48b3fcd661224fe4d2b78c6677399eb296c3795e17897af8d6cb79bad016e0151dea471483a8fe9bd8b193aa6ebcc41a4f61c00000000000000000000000000000000000000000000000000000000000000"
    },
    "sessionPkClientSignature": "ede11ec3123be0d1adc55c337d6f49137cbba7a9f0dc9910d9824f60c7b2dac3244c4a60f52ea14e42e3a8e6f813730a4443627de00b915b26dfceff3f78aa3f00",
    "sessionDataUserSignature": "277152974a983ee891ca1586737430be6738ea69af7f75761d93d1a66ae4a073179d8a0937a88388ac0b4ca927c88297feeb2494fd9a24e72a9c261db6fe959500"
  }'

User Authenticated Successfully

{
  "status": "success",
  "data": {
    "userSWA": "0x8B20023FC47D8F8BDB7418722dBB0e3e9964a906",
    "nonce": "0x00000000000000000000000000000000f9d4db5746824690b2efeae9f9945858",
    "clientSWA": "0xe8201E368557508bF183D4e2DcE1b1A1E0bd20FA",
    "sessionExpiry": 1747481250
  }
}

Learn

Previous Page

Understanding Intents

Overview guide to Okto Intents—covering token transfers, NFT transfers, swaps, and raw transactions with seamless cross-chain support.