Skip to content
Guardian / Docs
GitHub

SMS/Email Service Integration

This guide explains how to configure SMS and Email service integrations with Guardian for sending OTP and verification codes.

Overview

Section titled “Overview”

Guardian integrates with your SMS and Email services to send OTP (One-Time Password) codes for passwordless authentication and contact verification. Both services use the same request format, with the only difference being the channel type and recipient format.

Required Endpoints

Section titled “Required Endpoints”

Your SMS and Email services must implement the following endpoints:

POST {send_sms_path} - Send SMS

Section titled “POST {send_sms_path} - Send SMS”

Sends an SMS message with OTP to a phone number.

Request Body:

{
  "channel": "sms",
  "to": "+1234567890",
  "templateName": "otp_template",
  "templateParams": {
    "otp": "123456",
    "variable-1": "value-1",
    "variable-2": "value-2"
  }
}

POST {send_email_path} - Send Email

Section titled “POST {send_email_path} - Send Email”

Sends an email message with OTP to an email address.

Request Body:

{
  "channel": "email",
  "to": "user@example.com",
  "templateName": "otp_template",
  "templateParams": {
    "otp": "123456",
    "variable-1": "value-1",
    "variable-2": "value-2"
  }
}

Request Parameters:

ParameterTypeRequiredDescription
channelstringYesChannel type: “sms” for SMS service, “email” for Email service
tostringYesPhone number in E.164 format (SMS) or email address (Email)
templateNamestringYesName of the template to use
templateParamsobjectYesTemplate parameters including OTP and variables

Response (200 OK):

  • In case of success, the sms/email service should return 2xx.
  • Sample response:
{
  "status": "success",
  "message": "Message sent successfully"
}

Response (400 Bad Request):

  • In case of error, the sms/email service should return a json object
  • sample response:
{
  "error": {
    "message": "Invalid recipient format"
  }
}

Response (500 Internal Server Error):

{
  "error": {
    "message": "Service unavailable"
  }
}

Important Notes:

  • Both endpoints must accept POST requests
  • Status code 2xx indicates successful message delivery
  • Any non-2xx status code will be treated as an error
  • The templateParams object will always include an otp field when sending OTP codes
  • The channel field will be “sms” for SMS service calls and “email” for Email service calls

Database Configuration

Section titled “Database Configuration”

SMS Configuration

Section titled “SMS Configuration”

Configure the SMS service in the sms_config table:

INSERT INTO sms_config (
  tenant_id,
  is_ssl_enabled,
  host,
  port,
  send_sms_path,
  template_name,
  template_params
) VALUES (
  'tenant1',
  false,
  'localhost',
  8082,
  '/sms/send',
  'otp_template',
  '{"otp": "{{otp}}", "app_name": "MyApp"}'
);

SMS Table Schema

Section titled “SMS Table Schema”
FieldTypeDescription
tenant_idCHAR(10)Your tenant identifier (Primary Key)
is_ssl_enabledBOOLEANWhether SSL is enabled for SMS service
hostVARCHAR(256)SMS service host address
portINTSMS service port number
send_sms_pathVARCHAR(256)API path for sending SMS
template_nameVARCHAR(256)Default sms template
template_paramsJSONDefault template parameters in JSON format

Email Configuration

Section titled “Email Configuration”

Configure the Email service in the email_config table:

INSERT INTO email_config (
  tenant_id,
  is_ssl_enabled,
  host,
  port,
  send_email_path,
  template_name,
  template_params
) VALUES (
  'tenant1',
  false,
  'localhost',
  8083,
  '/email/send',
  'otp_template',
  '{"otp": "{{otp}}", "app_name": "MyApp"}'
);

Email Table Schema

Section titled “Email Table Schema”
FieldTypeDescription
tenant_idCHAR(10)Your tenant identifier (Primary Key)
is_ssl_enabledBOOLEANWhether SSL is enabled for email service
hostVARCHAR(256)Email service host address
portINTEmail service port number
send_email_pathVARCHAR(256)API path for sending emails
template_nameVARCHAR(256)Default email template
template_paramsJSONDefault template parameters in JSON format

Configuration Fields Explained

Section titled “Configuration Fields Explained”

tenant_id: Unique identifier for your tenant in Guardian

is_ssl_enabled: Set to true if your service uses HTTPS, false for HTTP

host: The hostname or IP address of your service (e.g., localhost, sms.example.com, email.example.com)

port: The port number where your service is running (e.g., 8082, 8083, 443)

send_sms_path / send_email_path: The API endpoint path for sending messages (e.g., /sms/send, /email/send, /api/v1/sms, /api/v1/email)

template_name: Default template name to use for messages. This can be overridden in the request

template_params: Default template parameters as a JSON object. These will be merged with request-specific parameters

Integration with Guardian Flows

Section titled “Integration with Guardian Flows”

Guardian will call your SMS and Email services in the following scenarios:

  1. Passwordless Authentication: When a user initiates passwordless signin/signup via SMS or Email
  2. Contact Verification: When verifying phone numbers or email addresses for account security
  3. OTP Resend: When a user requests to resend an OTP code

Template Parameters

Section titled “Template Parameters”

The templateParams object will contain:

  • otp: The OTP code that needs to be sent (always present for OTP messages)
  • Custom variables: Any additional variables defined in your template configuration

Example template parameters:

{
  "otp": "123456",
  "app_name": "MyApp",
  "expiry_minutes": "5"
}

Differences Between SMS and Email

Section titled “Differences Between SMS and Email”

While both services use the same request format, there are key differences:

AspectSMS ServiceEmail Service
Channel"sms""email"
Recipient FormatE.164 phone number (e.g., +1234567890)Email address (e.g., user@example.com)
Configuration Tablesms_configemail_config
Path Fieldsend_sms_pathsend_email_path
Use CasesPhone verification, SMS OTPEmail verification, Email OTP

Best Practices

Section titled “Best Practices”
  1. Recipient Format:
    • For SMS: Always validate and normalize phone numbers to E.164 format
    • For Email: Validate email addresses using standard email validation
  2. Error Handling: Return appropriate HTTP status codes and error response as JSON
  3. Security: Use HTTPS (is_ssl_enabled: true) in production environments
  4. Rate Limiting: Implement rate limiting on your services to prevent abuse
  5. Logging: Log all message sending attempts for debugging and auditing
  6. Template Management: Support dynamic template names and parameters
  7. Delivery Status: Optionally implement webhooks to track message delivery status

Troubleshooting

Section titled “Troubleshooting”

Messages Not Being Sent

Section titled “Messages Not Being Sent”
  • Verify the host, port, and path fields (send_sms_path or send_email_path) are correct
  • Check that your service is accessible from Guardian
  • Ensure SSL configuration matches your service setup
  • Check Guardian logs for error messages
  • Verify the correct configuration table is used (sms_config for SMS, email_config for Email)

Invalid Request Format

Section titled “Invalid Request Format”
  • Ensure your endpoint accepts JSON request bodies
  • Verify the request includes all required fields: channel, to, templateName, templateParams
  • Check that templateParams includes the otp field

Authentication Failures

Section titled “Authentication Failures”
  • If using HTTPS, verify SSL certificates are valid
  • Check network connectivity between Guardian and your service
  • Verify firewall rules allow communication

Wrong Channel Type

Section titled “Wrong Channel Type”
  • Ensure your SMS service only processes requests with channel: "sms"
  • Ensure your Email service only processes requests with channel: "email"