Verify Email OTP for Sign Up

1️⃣ Overview

Purpose: Verifies the OTP sent to the user’s email as the second step of the self-registration flow. On successful verification, the user’s account is activated.

⚠️ This endpoint is only applicable for the Self Registration flow. Users who signed up via a Workspace Invitation (with a hash) do not need to complete this step.

2️⃣ Endpoint

POST /idp/api/v1/user/signUp/verifyEmailOtp

3️⃣ Authentication

No authentication required. This is a public endpoint.

4️⃣ Request Headers

5️⃣ Request Body Schema

{
  "email": "string",
  "otp": "string"
}

6️⃣ Field Descriptions

7️⃣ Behavior Summary

Second step of the Self Registration flow.
• OTP Validation — The OTP must match the one dispatched during sign-up.
• Account Activation — On successful verification, the user account is fully activated.
• OTP Expiry — OTP is time-limited. If expired, the user must re-initiate the sign-up.
• Flow Specific — Only applicable for self-registered users. Invitation-based users are activated immediately upon sign-up.

📌 Additional Notes

• This is Step 2 of the self-registration flow. Step 1 is POST /idp/api/v1/user/sign-up.
• The email must exactly match the one used during sign-up.
• Workspace invitation users skip this step entirely as their account is activated via hash validation.