Verify Customer Token
Verify if the customer authentication token is still valid and retrieve customer information.
Endpoint
GET /api/shop/customers/verify-tokenRequest Headers
| Header | Required | Description |
|---|---|---|
X-STOREFRONT-KEY | Yes | Your storefront API key |
Authorization | Yes | Bearer token to verify |
Response Fields (200 OK - Valid Token)
| Field | Type | Description |
|---|---|---|
valid | boolean | Token validity status |
customer | object | Customer information |
message | string | Success message |
Customer Fields (if valid)
| Field | Type | Description |
|---|---|---|
id | integer | Customer ID |
firstName | string | First name |
lastName | string | Last name |
email | string | Email address |
Token States
- Valid (200) - Token is active and not expired
- Invalid (401) - Token is expired or tampered with
- Missing (400) - No token provided
Use Cases
- Check if user is still logged in
- Validate session before API calls
- Prevent stale token usage
- Auto-logout on token expiry
- Refresh session state
Token Expiry
- Tokens expire after a set period (typically 7 days)
- Expired tokens return 401 Unauthorized
- Use refresh token to get new token (if available)
- Token becomes invalid after user logout