[Q] Autofill and App signature - When using my own backend server

[burekas7]

Hi,

I need some clarification about using the AutoFill process and the app signature.

When I use the "smsRetrieverApi" method.

1. Who is actually responsible for sending the SMS message? My backend server, right?
2. If my server generates the content of the SMS message, how does it know what the app signature is? (hash)
   How do I get this value and transfer to the server?
   Does Pinput has a method to get it like getAppSignature?
   Or should I use SmartAuth for that?
   Do I have a way to get the SmartAuth instance?
3. Who is actually responsible for verifying the received pin code? My backend server, right?
4. Does the app listen to SMS messages forever or only on the screen where the pinput is? Do I have control over it?
5. Just to make sure I understand it correctly, for iOS it will also fill the code automatically like in Android, or it will only show the code in the keyboard so it will fill it by pressing on it manually?

Thanks.

[matias-casco]

Hi @burekas7

2. I generate the SMS from my server and I used SmartAuth to get the App Signature, it worked well on debug mode so far. I did not find any getAppSignature method on pinput package, I just found it on smart_auth package that is a dependecy of pinput package.