Skip to main content
Event Name: kyc_session_manual_review
This occurs when the automatic verification process cannot conclusively verify the user’s identity or when suspicious activity is detected. The session state is REVIEW.

Event Payload

The webhook payload contains the following structure: 
{
  "id": "550e8400-e29b-41d4-a716-446655440000",
  "event": "kyc_session_manual_review",
  "timestamp": "2025-06-19T17:14:13.123Z",
  "data": {
    "sessionId": "550e8400-e29b-41d4-a716-446655440002",
    "userId": "550e8400-e29b-41d4-a716-446655440001",
    "checks": [
      {
        "type": "document-verification",
        "state": "Validated",
        "data": {},
        "reasons": []
      },
      {
        "type": "face-matching",
        "state": "Refused",
        "data": {},
        "reasons": [
          {
            "type": "face-match",
            "code": "LOW_CONFIDENCE",
            "message": "Face matching confidence below threshold"
          }
        ]
      }
    ]
  }
}

Field Description

id
string
required
Unique event identifier (UUID)
event
string
required
Event type - always kyc_session_manual_review for this webhook
timestamp
string
required
Event timestamp in ISO 8601 format
data
object
required
Contains the event data
data.sessionId
string
required
Unique KYC session ID (UUID)
data.userId
string
required
Unique user ID (UUID)
data.checks
array
required
List of verification checks, showing which ones require review
data.checks[].type
string
required
Type of check (e.g., “document-verification”, “face-matching”)
data.checks[].state
string
required
Check state: “Validated” or “Refused”
data.checks[].data
object
required
Additional check data (format varies by check type)
data.checks[].reasons
array
required
Reasons why check was refused (empty for validated checks)
data.checks[].reasons[].type
string
Type of reason/issue detected
data.checks[].reasons[].code
string
Code identifying the specific issue
data.checks[].reasons[].message
string
Human-readable description of the issue

Expected Responses

Success Response

HTTP 200 OKThe webhook was processed successfully.

Client Error

HTTP 4xx StatusClient-side error. Will not be retried.

Server Error

HTTP 5xx StatusServer-side error. Will be retried with exponential backoff.

Implementation Example

app.post('/webhooks/ralio', (req, res) => {
  const { event, data } = req.body;
  
  if (event === 'kyc_session_manual_review') {
    const { sessionId, userId, checks } = data;
    
    // Process manual review requirement
    console.log(`KYC session ${sessionId} requires manual review for user ${userId}`);
    
    // Find checks that need review
    const failedChecks = checks.filter(check => check.state === 'Refused');
    console.log(`Failed checks: ${failedChecks.length}`);
    
    // Update your internal systems
    await updateKycSessionStatus(sessionId, 'REVIEW');
    await notifyComplianceTeam(sessionId, userId, failedChecks);
    
    // Respond with success
    res.status(200).json({ received: true });
  }
});