TAN

The TAN (Transaction Authentication Number) service generates cryptographically random one-time passcodes and delivers them to users through a configurable out-of-band channel such as email (SMTP) or an HTTP-based SMS gateway. The generated challenge is stored in the user's current session, identified via the SecToken, and simultaneously returned in the response body, allowing the authentication flow to verify the value entered by the user. When no active session is available, the service can also operate statelessly, generating and returning the passcode without session binding. Channel type, sender identity, recipient, and message template are all configurable per service instance, and individual request parameters can override the pre-configured defaults. This service is typically invoked from authentication workflows requiring delivery of a second factor before session elevation or login completion.

📄️ Generate challenge via GET

Generates a TAN challenge and delivers it to the recipient via the configured channel,

📄️ Generate challenge via POST

Generates a TAN challenge and delivers it via the configured channel, accepting delivery