Authenticate a player session

View as Markdown
Wuzzlo to Operator. Verify the Wuzzlo signature, validate the supplied session token, and resolve it to one wallet user. A valid session MUST return success true and body status 200. An unknown or expired session MUST return success false and body status 404.

Authentication

Signaturestring

Wuzzlo-to-Operator: Base64 RSA-SHA256 PKCS#1 v1.5 signature of the exact UTF-8 JSON body, verified with the Wuzzlo public key.

Request

This endpoint expects an object.
operatorIdstringRequired
tokenstringRequired
Primary operator session token to validate.
sessionTokenstringRequired
Session token alias sent by Wuzzlo.
gameIdstringRequired
userTokenstringOptional
operatorTokenstringOptional
userIdstringOptional
Optional user hint used during certification.
providerNamestringOptional
platformIdstringOptional
currencystringOptional
clientIpstringOptional

Response

Authenticated test user. The response body status MUST be exactly 200 and success MUST be true.
successtrue
statusinteger
userIdstring
usernamestring
currencystring
expiresAtUtcdatetime

Errors

404
Not Found Error