What is ExoVerify?


ExoVerify is the Verification product of Exotel. It hosts a suite of verification mechanisms that help businesses validate their users for sign-in, sign-up, password reset, COD confirmation, and more! It has an arsenal of mechanisms to ensure you need not look any further for your verification and authentication needs. 


Key benefits:-    


  • Automated Onboarding:

    • Any new and existing Exotel Clients will now have the ability to start using ExoVerify without the need to reach out to TS or their AMs. They can create test apps, production apps, and configure callback URLs, all in one place with the highest level of self-serviceability. TAT for app creation is less than 5 mins for a user with an existing Exotel account. 

  • Reporting:

    • Users will now be able to generate and download reports for their traffic (up to 6 months) without the Account Manager's intervention.

  • Usage Data: Verification Stats and Outbox

    • Clients will now be able to view and download stats / aggregated data. They will be able to view and filter verification data across apps, statuses, and date ranges. 

  • Dashboard:

    • For the very first time, an analytics dashboard will be available to ExoVerify users, where the day’s data is analyzed and will help businesses monitor their verification data in real-time.

  • Resources: 

    • The ExoVerify portal will be a single source of truth for businesses to access all the content available on ExoVerify. From GitHub links to downloading the latest SDK to FAQs to support articles and use-case documents.


  • Device-specific authentication:

    • Businesses that require tight coupling between the app and mobile number, can now forget about security concerns and cross-device authentication. nOTP fills the security gap where users use different mobile numbers to authenticate on a single device with SMS OTP. 

  • Seamless User Experience:

    • nOTP ensures all that an end-user has to do is enter their mobile number and nOTP will do the rest. User authentication cannot get more seamless 

  • Higher Success Rates: 

    • The delivery rate of an SMS is always a concern but that of a call is not :) 

    • nOTP uses a flash call/missed call approach to authenticate users. Internally Exotel’s highly reliable, available, and scalable Virtual Number network is used to make these flash calls, ensuring a high success rate for the verification traffic.
       

  • Low Cost:

    • nOTP costs a lot less than traditional verification methods like SMS OTP. 


With the all-new web app, you can now create new apps, access statistics and live data, generate and download reports while accessing a one-stop-shop for all the resources you need to integrate ExoVerify with your app.


To get quick access, please fill up this form. 


How to use the ExoVerify web app?


In order to access ExoVerify, you need to have the following:-

  • An Exotel Account (Don’t have one? Sign-up here)

  • Admin/Supervisor role associated with the account


And, that’s it!


Please note: if you have not completed the KYC verification process, you will only be able to explore the web app but cannot create an ‘App’ to generate the App ID and App secret. And, if you have multiple accounts with Exotel, please use the one where you are an Admin or a Supervisor. Please reach out to your POC to assign one of these two roles to you.


Once you’re in, you will find the below pages on the left side of the landing page. Please feel free to jump to the section where you need help.


App Setup Page:-


This is the page users can use to create ‘Apps’. By ‘App’, we mean a set of App ID and App Secret with specific configurations like callback URLs. Different ‘Apps’ can be created for different purposes: Testing, POC, Pilot Launch, Production, etc.


Create An App:

When you click on ‘Create New App’, the following form, with mandatory and optional fields, will come up. You can fill all the relevant fields and hit ‘Create’.

 

Please note that the ‘Call Confirm URL’ is representative of the endpoint that we hit in step 3 of the below sequence diagram. And ‘Call Back URL’ is representative of the endpoint that we hit in step 8 of the same diagram.



Bonus Tip:- If your use-case has the necessity of using a ‘Call Confirm URL’, ensure that the endpoint is responsive and has low latency. The latency of this endpoint will add to the overall TAT of the verification. Also, the status ‘Denied’ will be seen when a verification request was rejected by the ‘Call Confirm URL’ endpoint; also if no ‘Call Confirm URL’ is configured, ‘Denied’ as the status will never be seen.


After you fill the relevant fields and click ‘Create’, you will be shown an App ID and App Secret for the created App along with a summary of all the details. You can always get back to this screen by clicking on the name of the App in the App Setup page.


That’s it! You can now head over to the GitHub link to start integrating your Android App with ExoVerify’s nOTP. 


Edit an App:



After creating your App, you always have the option to edit all the details entered against your App, like:

  • Name

  • Primary Email

  • Phone Number

  • Additional Email IDs

  • Signature

  • Callback URLs

In addition to the above, you can also toggle the ‘Active’ status of the App. From ‘Active’ to ‘Inactive’ and vice-versa. Please note that making an App ‘Inactive’ will temporarily invalidate the credentials of the App. That is, any verification requests being sent to Exotel with the credentials of an Inactive App will be rejected. 


You can edit the App details, by either clicking on the three dots (...) in the last column of the App name in the table:


OR, you can click on the App Name hyperlink to open up the App Details view and then click on ‘Edit’:


To arrive at the following edit screen, where the aforementioned edits can be made:



Delete App:



For security or any other reason, if you decide to ‘Delete’ an App, you can always do that. But, please note that only an ‘Inactive’ App can only be deleted. So before an attempt is made to delete an App, the App must be made ‘Inactive’. 


The option to delete an App can be found by either clicking on the three dots (...) in the last column of the App name in the table:


OR, you can click on the App Name hyperlink to open up the App Details view and then click on ‘Delete’:



If the ‘Delete’ option is not active, it’s because of the status of the App. As mentioned above, you have to edit the App and make it ‘Inactive’ before attempting to Delete it.


Create New Credentials:



If you ever find the need to retain the configurations of an App, but only change the ‘App Secret’, you can do so by using the ‘Create New Credentials’ feature. Again, this feature can be used only if the App is ‘Inactive’. So edit the App and make it ‘Inactive’ before attempting to create new credentials. 


The option to create new credentials for an App can be found by either clicking on the three dots (...) in the last column of the App name in the table:


OR, you can click on the App Name hyperlink to open up the App Details view and then click on 

‘Create New Credentials’: 


If the ‘Create New Credentials’ option is not active, it’s because of the status of the App. As mentioned above, you have to edit the App and make it ‘Inactive’ before attempting to create new credentials for the App. 



Download the SDK:

Please note that the SDK is hosted on JitPack for integration. However, if you choose to download the SDK directly, you can always do that from the ‘App Setup’ page as seen below:




Usage Page:



The Usage Page is meant to give you aggregate stats and live data.


The aggregated stats are visible by default when you click on the Usage Page under the ‘Verification Stats’ tab. You can filter the stats by: 

  • Apps

  • Country and 

  • Date Range

By default, all the Apps and all the Countries are selected and the Date Range is for the current UTC day. 


You can also download the visible data by clicking on the ‘Download Stats’ button. A CSV will be instantly generated and downloaded. Please note that the ‘Verification Stats’ will have a freshness lag of 20 mins, at max, for the latest data.

The ‘Outbox’ tab is where the LIVE data of the verification traffic is visible and the data can be filtered by:

  • Apps

  • Country

  • Statuses and 

  • Date Range


Reports Page:



The Reports Page is where you can download custom detailed reports with filtration on: 

  • Apps

  • Countries

  • Date Ranges and

  • Statuses


After the above filters are applied, the report will be generated in some time and after the report is generated, you will be able to see a download link to download the report as a CSV. Please refresh the page to check if the report is available for download or not.



Resources Page:


You can find a host of resources related to ExoVerify here. From Support articles to GitHub links, to use case documents. We also have an nOTP Savings Calculator here to help you estimate your savings against traditional SMS OTP charges.



Current Limitations:

  • ExoVerify currently supports only nOTP. In due course, we will have other mechanisms like SMS OTP, Voice OTP, and Missed Call OTP to name a few.

  • nOTP works only with an Android App and requires an SDK to be integrated with the app to work. An API-only version will be launched soon.

  • In all the Date Range filters, the max date range that can be selected is 31 days, and data before the 1st of Jan, 2022 is not available. 


Please reach out to hello@exotel.com for more information on ExoVerify and visit this page for any information specific to the nOTP mechanism.