ExoVerify
Verify phone numbers using SMS OTP (One-Time Password). ExoVerify handles OTP generation, delivery, and validation — so you don't have to build it yourself.
How It Works
- Your app calls the Start Verification API with the user's phone number
- ExoVerify sends an SMS OTP to that number
- The user enters the OTP in your app
- Your app calls the Verify OTP API to validate it
- ExoVerify returns success or failure
Base URL
https://exoverify.exotel.com/v2/accounts/{account_sid}/verifications/sms
Authentication
ExoVerify uses Basic Authentication with your Application credentials (not the main API key/token):
Authorization: Basic <base64(Application_ID:Application_Secret)>
Content-Type: application/json
Getting Credentials
- Log into the Exotel Dashboard
- Navigate to ExoVerify → Applications
- Create a new SMS OTP application
- Note the App ID and App Secret
OTP Defaults
| Setting | Value |
|---|---|
| OTP expiry | 60 seconds |
| Max attempts | 10 per verification |
| OTP length | 4–6 digits (configurable) |
Endpoints
| Endpoint | Method | Description |
|---|---|---|
| Start Verification | POST | Send OTP to a phone number |
| Verify OTP | POST | Validate the OTP entered by the user |