Welcome to Web API, an offering within Youverse Services.
The Web API is built as a RESTful API hosted on the cloud. All requests and responses are encoded in JSON. The Youverse Web API was designed to expose complex biometric functionalities via a simple REST API that can be integrated virtually in any programming language, in any environment.
{primary} Passwordless login
User Authenticator API allows the creation of passwordless login applications in a simple and secure way.
We offer a Single Sign-On (SSO) service using OpenID Connect (OIDC) protocol along with multiple integrations with IAM Providers. To login with Youverse, you need a username and a selfie, and that’s it! No more passwords to worry about.
If you would like to test our SSO service for free, please send us an e-mail requesting a SSO service account and provide your app name, domain, and callback URL. You can also take a look at our Python example app using Youverse as an OIDC identity provider.
For testing our passwordless login experience, please take a look at Youverse Login.
{primary} Second factor authentication
User Authenticator API can also be used as a second-factor authentication method in conjunction with the most prominent identity and access management providers, such as Auth0, Okta and Onelogin.
Endpoint that extracts a biometric template from a user selfie, and matches it against the registration template.
Additionally, several quality checks are made to validate the selfie image.
POST | {base_url}/user_verification
Accepts: Verify user request
{success} Success
Status | Meaning | Schema |
---|---|---|
200 | OK | Verify user response |
{danger} Error responses
Status | Meaning | Schema |
---|---|---|
400 | Bad Request | Error message |
401 | Unauthorized | N/A |
500 | Internal Server Error | N/A |
Endpoint that deletes all the data related to specified user.
DELETE | {base_url}/user_verification
Accepts: Delete User Request
{success} Success
Status | Meaning | Schema |
---|---|---|
204 | No Content | No schema |
{danger} Error responses
Status | Meaning | Schema |
---|---|---|
400 | Bad Request | N/A |
401 | Unauthorized | N/A |
500 | Internal Server Error | N/A |
{
"user_id": "string",
"user_photo": "string",
"create_if_new": true
}
Properties
Name | Type | Required | Restrictions | Description |
---|---|---|---|---|
user_id | string | True | None | User Id (to be used for recurrent verifications. |
user_photo | string | True | None | Selfie image as BMP, PNG or JPG base 64 string. |
create_if_new | boolean | True | None | Set True for registering the user if is new. |
{
"status": "string"
}
Properties
Name | Type | Required | Restrictions | Description |
---|---|---|---|---|
status | string | True | None | User verification status. |
Enumerable types
Property | Value | Description |
---|---|---|
status | SUCCESS | Face authentication successful. |
status | NEW_USER | Face signup successful. |
status | USER_NOT_FOUND | User not registered. |
status | FAILED | Face authentication failed. |
There are specific error messages that can be returned along with a 400 Bad Request response:
Value | Description |
---|---|
face_not_found | Could not find a face in the image. |
multiple_faces | The image has more than one person. |
quality_failed | The provided image does not have enough quality or liveness test failed. |
{
"user_id": "string"
}
Properties
Name | Type | Required | Restrictions | Description |
---|---|---|---|---|
user_id | string | True | None | User Id. |
Please check our Sample Web App in Flask for capturing a selfie using the webcam and performing face authentication using this API. This sample app handles Youverse's redirect action in Auth0.
We also have a Flask + Okta Hosted Login + Youverse Face Authentication example app that shows how to use Flask to log in to your application with an Okta Hosted Login page. The user first logs in using Okta-Hosted login, and then we perform a second-factor face authentication using this API.
Finally, you can check our OpenID Connect example app here.