Verification API · SDK Guide

Pay users to try your app.
We verify it automatically.

This guide explains how to connect your app to RegoLoop so that when a tasker signs up or completes an action in your product, they get paid instantly — without you reviewing anything manually.

Auto-verified payouts
No client-side code
Works on web, Android & iOS
5-minute integration

What is this, really?

Think of it like this: a tasker on RegoLoop sees your campaign — "Sign up on Tunaa and get ₦4,500". They tap "Accept". RegoLoop gives them a unique link with a secret code baked in, like:

The link a tasker sees
https://yourapp.com/signup?rgt=a3f9c2b1e4d7f6c8...

When they sign up through that link, your app reads the rgt code and sends it to RegoLoop in the background. RegoLoop sees it, confirms the tasker completed the action, and releases their payout — all in seconds. You don't have to check screenshots. You don't have to approve anything. It just works.

This happens on your server, not the user's browser

The verification call goes from your backend to RegoLoop's API. The tasker never touches this code directly, so it can't be faked. This is what makes it secure.

The 4 steps

Here's everything that happens, end to end.

1

Create an SDK campaign on RegoLoop

Go to your brand dashboard, create a new campaign and pick "SDK-Verified Feature" as the task type. Set your payout, number of slots, and the sign-up URL for your app. Set required_feature to whatever action you want verified — e.g. signup.

Once approved and funded, get your API keys

After RegoLoop approves your campaign, go to the SDK Integration tab on your campaign page. Generate your test and live keys. Store them — they're shown once.
2

Read the ?rgt= param when users arrive

When a tasker clicks their unique link and lands on your signup page, there's a ?rgt= token in the URL. Capture it and keep it until they finish signing up. The simplest approach: store it in sessionStorage.

Your signup page (runs in the browser)
// Add this to your signup page — runs when the page loads
const rgt = new URLSearchParams(window.location.search).get("rgt")
if (rgt) {
  sessionStorage.setItem("rgt", rgt)
}

// Then when the user submits the signup form, include it:
const formData = {
  email:    "...",
  password: "...",
  rgt:      sessionStorage.getItem("rgt") || "",  // ← include this
}
3

Tell RegoLoop from your server after the action completes

After the user successfully registers (or completes whatever action you're tracking), your backend server makes one API call to RegoLoop. Pick your language below:

server.js
// Node.js / Express example
// Install: npm install axios

const axios = require("axios")

app.post("/webhook/user-registered", async (req, res) => {
  const { userId, rgt } = req.body

  // Only fire if user arrived via a RegoLoop referral link
  if (!rgt) return res.json({ ok: true })

  try {
    await axios.post(
      "https://api.regoloop.com/api/v1/sdk/v1/campaigns/events/",
      {
        feature:      "signup",      // must match your campaign setting
        device_token: rgt,           // the token from the ?rgt= URL param
        platform:     "web",
        event_time:   new Date().toISOString(),
      },
      {
        headers: {
          Authorization: process.env.REGOLOOP_LIVE_KEY,
          "Content-Type": "application/json",
        },
        timeout: 10000,
      }
    )
  } catch (err) {
    // Never let this break your registration flow
    console.error("RegoLoop SDK error:", err.message)
  }

  res.json({ ok: true })
})

Keep your API key on the server only

Never put REGOLOOP_LIVE_KEY in your frontend code or a public GitHub repo. It lives in your server's environment variables.
4

RegoLoop verifies and pays the tasker automatically

That's it. RegoLoop receives your event, confirms everything checks out, and instantly credits the tasker's wallet. They see a notification. You see the event show up in your campaign's event log. No manual approval needed from you or from RegoLoop.

Test it before going live

Use your test key instead of your live key while you're building. Test events don't trigger real payouts, so you can fire as many as you need to confirm everything is wired correctly.

Here's how to fire a test event manually from your terminal (no code needed):

Terminal
curl -X POST https://api.regoloop.com/api/v1/sdk/v1/campaigns/events/ \
  -H "Authorization: RT-test-yourbrand-xxxxxxxxxxxxxxxx" \
  -H "Content-Type: application/json" \
  -d '{
    "feature":      "signup",
    "device_token": "paste-the-device-token-from-the-taskers-submission",
    "platform":     "web",
    "event_time":   "2026-04-27T10:00:00Z"
  }'

What to expect back:

verifiedAll good — tasker would be paid on a live key.
duplicateThis token was already verified. Ignored safely.
validation_failed (422)Something didn't match. Check the event log on your campaign page.

Where does the device token come from?

When a tasker accepts your campaign, RegoLoop generates a unique token just for them. This token is embedded in their referral link as ?rgt=. You don't need to generate or store it — it comes from the URL.

For testing, accept your own campaign from a second account (a test tasker account). On the submissions page, open that submission — you'll see the full referral link and can copy the token directly.

Environment variables you need

Add these to your server's .env file:

.env
# Your RegoLoop API keys (get these from the SDK page on your campaign)
REGOLOOP_LIVE_KEY=RT-live-yourbrand-xxxxxxxxxxxxxxxx
REGOLOOP_TEST_KEY=RT-test-yourbrand-xxxxxxxxxxxxxxxx

# The base URL (don't change this)
REGOLOOP_API_URL=https://api.regoloop.com/api/v1

Common questions

Ready to integrate?

Create your campaign, get your API keys, and you can be live in under an hour.

Create SDK campaignTalk to us