Cloud API

Cloud Authentication

Add MFA to your application with a single API call

Second-factor authentication without installing anything. Our cloud-hosted Mideye Server handles authentication delivery, push notifications, SMS, and mobile app, while you focus on building your application. Just provide a phone number, we handle the rest.

Your Application

Any platform

→

REST API

Mideye Cloud

Sweden (Azure)

→

Push / SMS

User's Phone

Mideye+ or SMS

Single REST endpoint • Phone number is all you need • Response in seconds

How It Works

Your app calls the API

Send a request with the user's phone number and your API key. Optionally customize the message text.

                GET /api/sfwa/auth?msisdn=+46701234567

                Header: api-key: your-api-key

User receives authentication request

If the user has Mideye+ installed, they get an instant push notification. Otherwise, they receive an SMS with a magic link. Approval happens on their device.

Your app receives the result

The API responds synchronously with the authentication result. ACCEPT, REJECT, or TIMEOUT.

                { "code": "ACCEPT" }
              

Features

📱

Smart Delivery

Automatically uses push notification if user has Mideye+ installed, falls back to SMS magic link if not. Best of both worlds.

🔧

Customizable Messages

Set custom SMS text, push notification title, accept/reject button labels, and timeout duration per request.

⚡

Synchronous Response

No webhooks, no polling. The API call blocks until the user responds (or timeout). Simple request-response flow.

🛡️

Rate Limiting

Built-in spam protection prevents abuse. Configurable limits per phone number per minute and hour.

🇪🇺

European Data Residency

Our cloud infrastructure runs in Microsoft Azure's Sweden Central region. User phone numbers and authentication logs stay in the EU. Designed for GDPR compliance requirements.

Data processed and stored in Sweden
No data transfer outside EU/EEA
Mideye is a Swedish company

Use Cases

🔐

Step-Up Authentication

Add MFA to sensitive operations — password changes, fund transfers, admin actions.

🎫

Transaction Verification

Confirm high-value transactions. Display amount and recipient in the push notification.

📋

Document Signing

Verify identity before digital signatures. Links naturally with existing e-signature workflows.

🏢

Customer Portals

Secure customer login without forcing app installation. Works with any phone that can receive SMS.

API Parameters

Parameter	Required	Description
`msisdn`	Yes	Phone number in international format (e.g., +46701234567)
`api-key` (header)	Yes	Your API key (provided during onboarding)
`sms-text`	No	Custom SMS message text
`authentication-text`	No	Main text shown in push notification
`title-text`	No	Push notification title
`touch-timeout`	No	Timeout in seconds (default: 30, max: 60)
`button-accept-text`	No	Custom text for accept button
`button-reject-text`	No	Custom text for reject button

Response Codes

ACCEPT

User approved

REJECT

User rejected

TIMEOUT

No response

BAD_REQUEST

Invalid parameters

Ready to Add Cloud Authentication?

Get your API key and start authenticating users today. No server installation required.

Request API Access →