Skip to main content

Upgrade AgeKey

The Upgrade AgeKey endpoint updates an existing AgeKey with a new verification result. The AgeKey to upgrade is identified by the access token obtained from exchanging the authorization code returned when using the agekey-upgrade scope.

Upgrade endpoint

curl -X POST "https://api.agekey.org/v1/agekey/upgrade" \
  -H "Content-Type: application/json" \
  -H "Authorization: Basic <base64(access_token:)>" \
  -d '{"authorization_details":[{"type":"age_verification","age":{"date_of_birth":"2000-01-02"},"method":"id_doc_scan","verification_id":"b861f598-f58a-49e9-b98a-a2ee5bdfb4bb","verified_at":"2025-10-07T12:34:56Z","attributes":{"face_match_performed":true,"issuing_country":"US"}}]}'

Headers

HeaderValueRequired
Content-Typeapplication/jsonYes
AuthorizationBasic <base64(access_token:)>Yes

Body

PropertyTypeRequiredDescription
authorization_detailsarrayYesJSON array of verification data

Authorization details format

The authorization_details parameter must be a JSON array containing age verification information:

FieldTypeRequiredDescription
typestringYesAlways age_verification
ageobjectYesAge information object
age.date_of_birthstringNo*Date of birth in ISO 8601 format (YYYY-MM-DD)
age.at_least_yearsnumberNo*Minimum age threshold verified
age.yearsnumberNo*Exact age in years
methodstringYesVerification method used (see supported methods below)
verification_idstringYesA unique ID for revoking or auditing the verification. The ID is chosen by you, the contributor, not by the AgeKey service. Up to 100 characters. Alphanumeric plus _+/=.-. UUID v7 format is recommended.
verified_atstringYesVerification completion time (date or date-time in ISO 8601)
attributesobjectNoMethod-specific verification attributes
provenancestringNoVerification source path (for example /veratad/roc, /in_house/fae)

*Either date_of_birth, at_least_years, or years is required depending on the verification method.

Example:

[
  {
    "type": "age_verification",
    "age": {
      "date_of_birth": "2000-01-02"
    },
    "method": "id_doc_scan",
    "verification_id": "b861f598-f58a-49e9-b98a-a2ee5bdfb4bb",
    "verified_at": "2025-10-07T12:34:56Z",
    "attributes": {
      "face_match_performed": true,
      "issuing_country": "US"
    }
  }
]

Supported verification methods

MethodAge FormatRequired Attributes*Optional Attributes*
email_age_estimationat_least_yearsNoneNone
facial_age_estimationat_least_yearsNoneon_device (boolean)
national_id_numberdate_of_birth preferredissuing_country (ISO 3166-1 alpha-2)None
digital_credentialdate_of_birth preferredplatform (singpass, connect_id, privy, digilocker, korean_real_name), issuing_country (ISO 3166-1 alpha-2)None
id_doc_scandate_of_birth preferredNoneface_match_performed (boolean), issuing_country (ISO 3166-1 alpha-2)
payment_card_networkat_least_years: 18card_type (credit, debit, unknown)None

*Attributes parsing is strict, if the attributes given for a particular method aren't required or optional then the request fails.

Response

On success, returns a status code of 200 with an empty response body:

{}
note

Success is indicated by the 200 status code. The response body is empty.