Cloud Authentication
Add MFA to your application with a single API call
Cloud Authentication with Mideye provides second-factor authentication through a simple REST API. Our cloud-hosted Mideye Server handles MFA delivery via push notifications, SMS, and mobile app — no on-premises installation required. Just provide a phone number through our REST API, and we handle the authentication challenge and response. Perfect for SaaS applications and API-driven authentication.
Single REST endpoint • Phone number is all you need • Response in seconds
How Does the Cloud Authentication API Work?
Your app calls the API
Send a request with the user's phone number and your API key. Optionally customize the message text. See our administrator documentation for integration examples.
GET /api/sfwa/auth?msisdn=+46701234567Header: api-key: your-api-key User receives authentication request
If the user has Mideye+ installed, they get an instant push notification. Otherwise, they receive an SMS with a magic link. Approval happens on their device.
Your app receives the result
The API responds synchronously with the authentication result. ACCEPT, REJECT, or TIMEOUT.
{ "code": "ACCEPT" } What Features Are Available?
Push Notifications
Users with the Mideye+ app receive instant push notifications. One tap to approve — no codes to type.
Smart Delivery
Automatically uses push notification if user has Mideye+ installed, falls back to SMS magic link if not. Best of both worlds.
Customizable Messages
Set custom SMS text, push notification title, accept/reject button labels, and timeout duration per request.
Synchronous Response
No webhooks, no polling. The API call blocks until the user responds (or timeout). Simple request-response flow.
Rate Limiting
Built-in spam protection prevents abuse. Configurable limits per phone number per minute and hour.
European Data Residency
Our cloud infrastructure runs in Europe-based hosting in Sweden. User phone numbers and authentication logs stay in the EU. Designed for GDPR compliance requirements.
- Data processed and stored in Sweden
- Mideye infrastructure within EU/EEA
- Mideye is a Swedish company
When Should You Use the Cloud Authentication API?
Step-Up Authentication
Add MFA to sensitive operations — password changes, fund transfers, admin actions.
Transaction Verification
Confirm high-value transactions. Display amount and recipient in the push notification.
Document Signing
Verify identity before digital signatures. Links naturally with existing e-signature workflows.
Customer Portals
Secure customer login without forcing app installation. Works with any phone that can receive SMS.
What Are the API Parameters?
| Parameter | Required | Description |
|---|---|---|
msisdn | Yes | Phone number in international format (e.g., +46701234567) |
api-key (header) | Yes | Your API key (provided during onboarding) |
sms-text | No | Custom SMS message text |
authentication-text | No | Main text shown in push notification |
title-text | No | Push notification title |
touch-timeout | No | Timeout in seconds (default: 30, max: 60) |
button-accept-text | No | Custom text for accept button |
button-reject-text | No | Custom text for reject button |
What Are the Response Codes?
ACCEPT User approved
REJECT User rejected
TIMEOUT No response
BAD_REQUEST Invalid parameters
Ready to Add Cloud Authentication?
Get your API key and start authenticating users today. No server installation required.
Request API Access →