#Offline Aadhaar KYC

#What is offline Aadhaar KYC?

Offline Aadhaar KYC, also known as OKYC, adheres to UIDAI guidelines, ensuring legal compliance in the KYC process. Customers can furnish their Aadhaar number and authenticate it through an OTP sent to their Aadhaar-linked mobile number. This authentication grants them access to a downloadable XML file containing comprehensive Aadhaar details, including name, gender, date of birth, and address.

By default, this file is securely locked. To access its contents, customers establish a 4-digit access code, providing an additional layer of security and control over their Aadhaar information.

#What is (website name)’s OKYC solution?

Utilize our OKYC APIs to instantly retrieve Aadhaar XML for your users within your app or website, ensuring full privacy compliance. We provide user-friendly screens, readily deployable for your customers to obtain their Aadhaar XML in a shareable format and set up a share code. This share code grants you access to the file's contents.

#What can I do with this product?

Offer your customers a smooth experience for OKYC. Extract verified details of your customers with confidence.

Whichever industry you belong to—insurance, finance, gaming, or even transportation and logistics—you can ease the onboarding and verification processes for your customers.

#Offline Aadhaar KYC integration

#Step 1 — Start KYC and business documentation

Once (Website Name)'s Sales team has interacted with you and confirmed integration, this process will begin. You will need to add a few KYC details and review some agreements.

#Step 2 — Get API credentials

(Website Name) can provide x-client-id, x-client-secret and x-product-instance-id. These credentials are required to make API calls on Sandbox or Prodution.

#Step 3 — Choose integration method

(website name)’s OKYC product allows you to choose between two integration methods.

#Pre-built screens

Simply redirect your customer to pre-built screens with carefully designed UX, and collect Aadhaar details. Theme screens to match your brand. Look at the pre-built screens guide to proceed.

#API integration

Integrate directly with our APIs and build your own UI. Look at the API integration guide to proceed.

#Offline Aadhaar KYC integration

(website name)’s web based solution can be used to complete a customer’s KYC with offline Aadhaar—within your own app or website, in real-time. Offline Aadhaar involves getting a downloadable, locked XML file with Aadhaar information from your customers.

Essentially, only 2 APIs are required for enabling this flow—

• Create OKYC request—Create OKYC request for your customer. You will get a unique id in the response which can be used to track this particular request.
  • Post this, the customer should be redirected to (website name)’s UI for collection of details like Aadhaar number and share code for the locked XML file.
• Get OKYC request status—Get status of customer verification by providing the request id.

Additionally, here are the URLs you would need for these APIs—

• Sandbox—https://dg-sandbox.(website name).co
• Production—https://dg.(website name).co
• Headers—Contact (website name) for providing the credentials required to successfully call (website name) APIs. This contains:
  • x-client-id
  • x-client-secret
  • x-product-instance-id

#Create OKYC request

Call this API to create a unique request to get your customer started on the OKYC journey.

(website name)’s pre-built screens will handle the OKYC completion flow, but you need to give (website name) a redirectURL—this is where we will redirect your customer, once the OKYC journey is complete. This is the only param needed to create a new OKYC request.

---

SUCCESS Your request has a valid redirectURL and (website name) has processed your request successfully.

The button shown in the screen should have response.url as the link.

---

Request

Share a redirectURL to send your customers to, after the OKYC journey is completed by your customer, on (website name) screens.

Copy

POST /api/okyc/ 
Content-Length:46
{
"redirectURL":"https://(website name).co/anything?anyotherkeys=cangohere"
}

---

Response

You will get a unique URL from (website name)—OKYC details will be collected here—where you will have to redirect your customer.

Copy

{
"id":"7097e53a-ba29-48a2-983d-878433b4f33e",//unique request id for the OKYC request 
"url":"https://dg-sandbox.(website name).co/okyc/initiate/uuid",//this is where you will redirect your customers 
"validUpto":"Wed, 23 Jun 2021 19:33:55 GMT",//the time till when the request id is valid 
"status":"incomplete"//status against the request id 
}

url is a (website name) generated URL, that is unique to a particular request id. This is where you should redirect the customer to, to complete their KYC. You can generate a new url as many times as you want without additional charges.

#Completion of OKYC by customer

(website name) SCREENS are used to collect OKYC details from your customer. The following details are collected, as shown in the sample screen flow below—

• Aadhaar number —not saved/stored by (website name)—which is used to fetch the corresponding XML file for the customer, after an OTP verification is done with Aadhaar linked mobile number.
• Share code is a 4 digit pin set by the customer and serves as the password to unlock the contents of the XML file.

The screen on the left shows (website name)’s UI. This is what your customers see when filling in details to complete their OKYC.

When OKYC is completed, (website name) will redirect the customer to the redirectURL that you provided in the Create OKYC request API. (website name) will append the share code provided by the customer, and the request id to the provided URL. You should store both these values on your system to access the XML file at a later stage.

#Get OKYC request status

Call this API to view status of an OKYC journey that you initiated with a customer.

Possible values for status, received as part of the response—

• When complete, KYC is complete for a customer. If you provide a shareCode in the API request, you will get all customer details from the Aadhaar XML file.
• When incomplete, you can check for KYC completion after some time.
• In case the request has expired, your will get a 404 error code.

GET /api/okyc/:requestId/:shareCode/ 

{
"aadhaar":{
"address":{
"careOf":"S/O: Gurjar Pradeep",
"country":"India",
"district":"Bangalore",
"house":"# 90 1 Cross",
"landmark":"Near Talkies",
"locality":"Nagarabhavi",
"pin":"560072",
"postOffice":"Nagarbhavi",
"state":"Karnataka",
"street":"Nagarbhavi 1st Main Road",
"subDistrict":"Bangalore North",
"vtc":"Bangalore North"
},
"dateOfBirth":"23-05-1990",
"email":"550fa5fd91eee3f29f6361a8c89aa9713d4d38811d1a5",
"gender":"M",
"generatedAt":"20210419145604802",
"maskedNumber":"xxxx-xxxx-8832",
"name":"Jignesh Gurjar",
"phone":"09c91184c1d610282d661dd63d257e3b44446853fb1388c9d5b",
"photo":"/9j/4AAQSkZJRgABAgAAAQABAAD/2wBDAAgGBgcGBQgHBwcJCQgKD==",
"verified":{
"email":false,
"phone":false,
"signature":true
},
"xml":{
"fileUrl":"https://dg-esign-uat.s3.amazonaws.com/testFolder/sample.zip",
"shareCode":"1111",
"validUntil":"Tue, 27 Jul 2021 12:16:27 GMT"
}
},
"status":"complete",
"id":"7097e53a-ba29-48a2-983d-878433b4f33e"
}

#API integration

(website name)’s API solution can be used to complete a customer’s KYC with offline Aadhaar in real-time—with your own screens on your app or website. With this, you will get a downloadable, locked XML file with Aadhaar information from your customers.

The following APIs are required for enabling this flow—

• Create OKYC request—Create OKYC request for your customer. You will get a unique id in the response which can be used to track this particular request.
• Initiate OKYC Request—Initialise the OKYC request for your customer with the previously returned request id and receive a base64 encoded captchaImage from (website name). Once you have called this API, you can redirect your customer to your OKYC screens, to collect Aadhaar number and captcha from your customer.
• Verify OKYC Request—Share the aadhaarNumber and captchaCode, collected from your customer, with (website name). Next, redirect your customer to a screen to collect OTP sent to your customer’s Aadhaar linked mobile number. Also request your customer to enter a 4 digit share code—this is the code that will be used to unlock you customer’s fetch Aadhaar XML file.
• Complete OKYC Request—Share the collected otp and shareCode to complete verification process. Next, you can call the Get OKYC request status API. Once the OKYC request has been processed successfully you wll get customer details from the Aadhaar and the XML file link in the response.
• Get OKYC request status—Get status of customer verification by providing the request id and optionally, the shareCode.

Additionally, here is the information you would need for calling these APIs—

• Sandbox URL—https://dg-sandbox.(website name).co
• Production URL—https://dg.(website name).co
• Headers—Contact (website name) for providing the credentials required to successfully call (website name) APIs. This contains:
  • x-client-id
  • x-client-secret
  • x-product-instance-id

#Create OKYC request

Call this API to create a unique request to get your customer started on the OKYC journey.

POST /api/okyc/ 

{
"id":"7097e53a-ba29-48a2-983d-878433b4f33e",
"validUpto":"Wed, 23 Jun 2021 19:33:55 GMT",
"status":"incomplete"
}

#Initiate OKYC request

Call this API to initiate your customer’s OKYC journey. Pass the previously shared request id in the API call.

GET /api/okyc/:requestId/initiate/ 

{
"captchaImage":"base 64 Image data",
"id":"7097e53a-ba29-48a2-983d-878433b4f33e",
"captchaRetriesRemaining":4
}

#Verify OKYC request

Call this API once you have collected the following details from your customer—

• aadhaarNumber —This is not saved/stored by (website name), but is passed on to UIDAI to initiate sending an OTP to your customer’s Aadhaar linked mobile number.
• captchaCode—An encoded captcha image is provided to you by (website name), as received from UIDAI, in the Initiate OKYC request API response. You would need to convert this to an image and display it to your customer, wherein they would enter the text associated with the captcha. A correct captcha response is expected to proceed to the next API call.

POST /api/okyc/:requestId/verify/ 
{
"aadhaarNumber":"aadhaarNumber",
"captchaCode":"captchaCode"
}

{
"code":"otp_sent",
"message":"OTP sent to your registered mobile number."
}

#Complete OKYC request

Call this API once you have collected the following details from your customer—

• otp —This should be filled in by the customer, who would have received an OTP from UIDAI, on their Aadhaar linked mobile number.
• shareCode is a 4 digit pin set by the customer and serves as the password to unlock the contents of the XML file at a later stage.
• aadhaarNumber —This is not saved/stored by (website name), but is passed on to UIDAI to verify OTP.

This API returns the unwrapped Aadhaar response, as well as a link to the XML, if the otp is correct. If otp is incorrect, the OKYC status remains incomplete. To test for different scenarios, use the following otp values on Sandbox—

• Use 123456 for a valid OTP.
• Use 123457 for OTP to mimic 1st failed attempt.
• Use 123458 for OTP to mimic 2nd failed attempt.
• Use 123459 for OTP to mimic failed attempts limit exceeded.
• Anything aside from these values returns an error description as a generic “error”, if the upstream service returns an error.

You may use any 4 digit value for the shareCode, when testing on Sandbox.

POST /api/okyc/:requestId/complete/ 
{
"otp":"132347",
"shareCode":"1234",
"aadhaarNumber":"999999990019"
}

{
"aadhaar":{
"address":{
"careOf":"S/O: Gurjar Pradeep",
"country":"India",
"district":"Bangalore",
"house":"# 90 1 Cross",
"landmark":"Near Talkies",
"locality":"Nagarabhavi",
"pin":"560072",
"postOffice":"Nagarbhavi",
"state":"Karnataka",
"street":"Nagarbhavi 1st Main Road",
"subDistrict":"Bangalore North",
"vtc":"Bangalore North"
},
"dateOfBirth":"23-05-1990",
"email":"550fa5fd91eee3f29f6361a8c89aa9713d4d38811d1a5",
"gender":"M",
"generatedAt":"20210419145604802",
"maskedNumber":"xxxx-xxxx-8832",
"name":"Jignesh Gurjar",
"phone":"09c91184c1d610282d661dd63d257e3b44446853fb1388c9d5b",
"photo":"/9j/4AAQSkZJRgABAgAAAQABAAD/2wBDAAgGBgcGBQgHBwcJCQgKD==",
"verified":{
"email":false,
"phone":false,
"signature":true
},
"xml":{
"fileUrl":"https://(website name)s3linkgoeshere.com/",
"validUntil":"Wed, 23 Jun 2021 19:33:55 GMT",
"shareCode":"1234"
}
},
"status":"complete",
"id":"7097e53a-ba29-48a2-983d-878433b4f33e"
}

#Get OKYC request status

Call this API to view status of an OKYC journey that you initiated with a customer.

When the status of the OKYC request id is complete, this API returns—

• Aadhaar details in json, if a correct shareCode is passed.
• An error, if an incorrect shareCode is passed.
• A link to the zip/xml aadhaar details, if no shareCode is passed.

Possible values for status, received as part of the response—

• When complete, KYC is complete for a customer. If you provide a shareCode in the API request, you will get all customer details from the Aadhaar XML file.
• When incomplete, you can check for KYC completion after some time.
• In case the request has expired, your will get a 404 error code.

GET /api/okyc/:requestId/:shareCode/ 

{
"aadhaar":{
"address":{
"careOf":"S/O: Gurjar Pradeep",
"country":"India",
"district":"Bangalore",
"house":"# 90 1 Cross",
"landmark":"Near Talkies",
"locality":"Nagarabhavi",
"pin":"560072",
"postOffice":"Nagarbhavi",
"state":"Karnataka",
"street":"Nagarbhavi 1st Main Road",
"subDistrict":"Bangalore North",
"vtc":"Bangalore North"
},
"dateOfBirth":"23-05-1990",
"email":"550fa5fd91eee3f29f6361a8c89aa9713d4d38811d1a5",
"gender":"M",
"generatedAt":"20210419145604802",
"maskedNumber":"xxxx-xxxx-8832",
"name":"Jignesh Gurjar",
"phone":"09c91184c1d610282d661dd63d257e3b44446853fb1388c9d5b",
"photo":"/9j/4AAQSkZJRgABAgAAAQABAAD/2wBDAAgGBgcGBQgHBwcJCQgKD==",
"verified":{
"email":false,
"phone":false,
"signature":true
},
"xml":{
"fileUrl":"https://dg-esign-uat.s3.amazonaws.com/testFolder/sample.zip",
"shareCode":"1111",
"validUntil":"Tue, 27 Jul 2021 12:16:27 GMT"
}
},
"status":"complete",
"id":"7097e53a-ba29-48a2-983d-878433b4f33e"
}

#Aadhaar OKYC Redundancy API Integration

The following guide describes the redundancy implementation of our Aadhaar OKYC APIs. Due to intermittent issues on our supply partner's end, we have introduced an Aadhaar Redundancy API, which uses either supply partner to perform Aadhaar Verification and fetch a user's Aadhaar details, depending on uptimes. You will need the following 2 APIs—

• Create Aadhaar Verification Request—This lets you initiate a verification request.
• GET Aadhaar Verification Details—This lets you check the status associated with the verification request, and if complete, fetch the verification details.

Here are the URLs you would need for this integration—

• Sandbox—https://dg-sandbox.(website name).co
• Production—https://dg.(website name).co
• Headers—Contact (website name) for providing the credentials required to successfully call (website name) APIs. This contains:
  • x-client-id
  • x-client-secret
  • x-product-instance-id

#Create Aadhaar verification request

Call this API to initiate Aadhaar Verification for your end customer. A quick explanation of the request params—

• redirectUrl Endpoint to which your end customer will be redirected to, post completion of verification flow.

POST  /api/aadhaar/verify
{
"redirectUrl":"https://(website name).co"
}

{
"id":"be896113-6ad1-4741-80e3-56e67e794959",
"status":"pending",
"url":"https://dg.(website name).co/digilocker/login/be896113-6ad1-4741-80e3-56e67e794959?path=L2Y3ZDdjOTk2LWEzNmQtNDQ0Mi1iMTliLTY3MDQ5NTE5Mjc0Yy8=",
"validUpto":"2023-11-15T06:52:01+05:30",
"traceId":"1-6540a411-48c3a26c1442b1580f6e6bf9"
}

#Get Aadhaar Verification Details

Call this API to fetch the details and status of the Aadhaar Verification request. A quick explanation of the query params—

• request_id The id returned in the Create Aadhaar Verification request response

GET  /api/aadhaar/verify/:request_id

{
"id":"be896113-6ad1-4741-80e3-56e67e794959",
"status":"pending",
"url":"https://dg.(website name).co/digilocker/login/be896113-6ad1-4741-80e3-56e67e794959?path=L2Y3ZDdjOTk2LWEzNmQtNDQ0Mi1iMTliLTY3MDQ5NTE5Mjc0Yy8=",
"validUpto":"2023-11-15T06:52:01+05:30",
"traceId":"1-6540a411-48c3a26c1442b1580f6e6bf9"
}