User Authenticator API

Welcome to Web API, an offering within Youverse Services.

The Web API is built as a RESTful API hosted on the cloud. All requests and responses are encoded in JSON. The Youverse Web API was designed to expose complex biometric functionalities via a simple REST API that can be integrated virtually in any programming language, in any environment.

Use cases

{primary} Passwordless login

User Authenticator API allows the creation of passwordless login applications in a simple and secure way.

We offer a Single Sign-On (SSO) service using OpenID Connect (OIDC) protocol along with multiple integrations with IAM Providers. To login with Youverse, you need a username and a selfie, and that’s it! No more passwords to worry about.

If you would like to test our SSO service for free, please send us an e-mail requesting a SSO service account and provide your app name, domain, and callback URL. You can also take a look at our Python example app using Youverse as an OIDC identity provider.

For testing our passwordless login experience, please take a look at Youverse Login.

{primary} Second factor authentication

User Authenticator API can also be used as a second-factor authentication method in conjunction with the most prominent identity and access management providers, such as Auth0, Okta and Onelogin.

API endpoints

User authentication

Endpoint that extracts a biometric template from a user selfie, and matches it against the registration template.

Additionally, several quality checks are made to validate the selfie image.

POST | {base_url}/user_verification

Accepts: Verify user request

{success} Success

Status Meaning Schema
200 OK Verify user response

{danger} Error responses

Status Meaning Schema
400 Bad Request Error message
401 Unauthorized N/A
500 Internal Server Error N/A

User deletion

Endpoint that deletes all the data related to specified user.

DELETE |  {base_url}/user_verification

Accepts: Delete User Request

{success} Success

Status Meaning Schema
204 No Content No schema

{danger} Error responses

Status Meaning Schema
400 Bad Request N/A
401 Unauthorized N/A
500 Internal Server Error N/A

Schemas

Verify user request

{
  "user_id": "string",
  "user_photo": "string",
  "create_if_new": true
}

Properties

Name Type Required Restrictions Description
user_id string True None User Id (to be used for recurrent verifications.
user_photo string True None Selfie image as BMP, PNG or JPG base 64 string.
create_if_new boolean True None Set True for registering the user if is new.

Verify user response

{
  "status": "string"
}

Properties

Name Type Required Restrictions Description
status string True None User verification status.

Enumerable types

Property Value Description
status SUCCESS Face authentication successful.
status NEW_USER Face signup successful.
status USER_NOT_FOUND User not registered.
status FAILED Face authentication failed.

Verify User Error Messages

There are specific error messages that can be returned along with a 400 Bad Request response:

Value Description
face_not_found Could not find a face in the image.
multiple_faces The image has more than one person.
quality_failed The provided image does not have enough quality or liveness test failed.

Delete User Request

{
  "user_id": "string"
}

Properties

Name Type Required Restrictions Description
user_id string True None User Id.

Samples & SDKs

Please check our Sample Web App in Flask for capturing a selfie using the webcam and performing face authentication using this API. This sample app handles Youverse's redirect action in Auth0.

We also have a Flask + Okta Hosted Login + Youverse Face Authentication example app that shows how to use Flask to log in to your application with an Okta Hosted Login page. The user first logs in using Okta-Hosted login, and then we perform a second-factor face authentication using this API.

Finally, you can check our OpenID Connect example app here.