Lookup the associated fingerprint for the telemetry_id returned from the GetTelemetryID() function. Learn more about the different fingerprint types and verdicts in our DFP guide.
You can make a decision based on the recommended verdict in the response:
- ALLOW - This is a known valid device grouping or device profile that is part of the default ALLOW listed set of known devices by Stytch. This grouping is made up of verified device profiles that match the characteristics of known/authentic traffic origins.
- BLOCK - This is a known bad or malicious device profile that is undesirable and should be blocked from completing the privileged action in question.
- CHALLENGE - This is an unknown or potentially malicious device that should be put through increased friction such as 2FA or other forms of extended user verification before allowing the privileged action to proceed.
If the telemetry_id is expired or not found, this endpoint returns a 404 telemetry_id_not_found error. We recommend treating 404 errors as a BLOCK, since it could be a sign of an attacker trying to bypass DFP protections. See Attacker-controlled telemetry IDs for more information.