1. Webhooks
Vrtx Docs
  • Auth
    • Token
      POST
  • Onboarding
    • Start onboarding
      POST
    • Verify onboarding OTP
      POST
    • Resend onboarding OTP
      POST
    • Get session status
      GET
    • Initiate Nafath
      POST
    • Cancels session
      POST
    • Complete customer info
      POST
  • Webhooks
    • Process Nafath webhook
      POST
    • Process Faceki webhook
      POST
    • Process T2 webhook
      POST
  • Wallet
    • Change mobile number from profile settings
      • Change mobile number
      • Verify mobile number change OTP
      • Get mobile change status
    • Change mobile number from login screen
      • Change mobile number
      • Verify mobile number change OTP
      • Initiate Nafath
      • Get mobile number change status
  • Businesses
    • Create business
      POST
  • Transactions
    • Business Accounts
      • Get business account balance
      • Get transaction details
      • List business transactions
    • Wallet Accounts
      • Get wallet balance
      • List wallet transactions
  • Payouts
    • Create payout
      POST
    • Get payout status
      GET
    • Create bulk payout
      POST
    • Get bulk payout status
      GET
    • Get batch report
      GET
  • Cards
    • Issuance
      • Issue card
      • Get card issuance
      • Complete card issuance
      • Verify card issuance OTP
      • Convert virtual to physical
      • Verify card conversion OTP
    • Management
      • Get card
      • Change card status
      • Set or update card PIN
      • Verify card PIN OTP
      • Activate physical card
      • Verify activation OTP
      • Display sensitive data
      • Verify display sensitive data OTP
  • cards
    • Initiate card replacement
    • Verify OTP and complete card replacement
Open-Loop-v2Closed-loop V2Card Simulatoropen-loop-test
Open-Loop-v2Closed-loop V2Card Simulatoropen-loop-test
  1. Webhooks

Process Nafath webhook

POST
/webhooks/nafath
Last modified:2025-12-02 10:06:51
Processes Nafath authentication webhook callbacks to update session status and user information.
This endpoint receives webhook notifications from Nafath when a user completes or rejects
biometric authentication. It verifies the JWT token, processes the callback data,
and updates the corresponding onboarding session status.
Security:
JWT token verification using ELM's public key (JWK)
Token signature validation and expiration checks
Request Structure (Official Nafath API):
token - JWT token signed by ELM containing request status and user information
transId - Transaction ID created upon creating the request
requestId - Request Number sent by client upon creating the request
JWT Token Status Values:
COMPLETED - Request accepted by authenticated user with successful biometric verification
REJECTED - Request rejected by user or verification failed
The JWT token contains verified user information from the Saudi national identity system
when the status is COMPLETED.

Request

Body Params application/jsonRequired

Examples

Responses

🟢200Success
application/json
Default Response
Body

đźź 400400
đźź 401401
đźź 403403
đźź 404404
đźź 405405
đźź 409409
đźź 410410
đźź 422422
đźź 429429
đź”´500500
đź”´501501
đź”´503503
đź”´504504
đź”´505505
Request Request Example
Shell
JavaScript
Java
Swift
curl --location --request POST '/webhooks/nafath' \
--header 'Content-Type: application/json' \
--data-raw '{
    "token": "eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9...",
    "trans_id": "NF123456789",
    "request_id": "s1d2e3f4-a5b6-7890-c1d2-e3f4a5b6c7d8"
}'
Response Response Example
200 - Example 1
{
    "success": true,
    "timestamp": "string"
}
Modified at 2025-12-02 10:06:51
Previous
Complete customer info
Next
Process Faceki webhook
Built with