Welcome to LoomAPI

LoomAPI provides a simple, secure REST API for verifying user ages through government-issued ID documents. Built for platforms that need to comply with age verification regulations while keeping PII off their own infrastructure.

What is LoomAPI?

Age verification is increasingly required for online platforms — adult content, dating, UGC, and other regulated verticals. LoomAPI wraps iDenfy's identity verification into a single API: one endpoint to start a session, signed age tokens (JWT) for access control, and webhooks with automatic retries.

Key features

• iDenfy-powered verification — Document and biometric checks run through iDenfy's AI-based analysis. We do not store ID images or biometric data.
• Async-first with webhooks — Start a session with one API call; the user completes verification in iDenfy's hosted UI. Receive results via webhook or poll status.
• Signed age tokens (JWT) — On approval, a signed JWT is issued for access control. Validate it server-side; no raw PII in the token.
• Rate limiting and quotas — Per-key limits with clear 429 responses and Retry-After headers.

How it works

1. Start verification: Call POST /verify/start with your tenant API key; receive a verificationId and sessionUrl.
2. User completes session: Send the user to sessionUrl to complete identity verification via iDenfy.
3. Get result: Receive a verification.completed webhook or poll GET /verify/status.
4. Validate token: Use POST /tokens/validate to confirm over18: true in your backend.

Quick start

Follow our 10-minute quickstart to run the full flow.

Use cases

• Adult and NSFW content platforms — age-gate access to comply with regulations
• Dating and chat apps — verify 18+ before account creation
• UGC platforms — age-gate restricted areas or features
• High-risk SaaS — processor-friendly, audit-ready verification without storing PII

API base URL

https://api.loomapi.com

Support

See the Quickstart and Authentication docs, or contact support@loomapi.com.