Skip to main content
POST
/
verify
cURL
curl --request POST \
  --url https://api.deflect.bot/verify \
  --header 'Content-Type: application/json' \
  --data '{
  "api_key": "<string>",
  "action_id": "<string>",
  "token": "<string>"
}'
{
  "success": true,
  "verdict": {
    "can_pass": true
  },
  "device": {
    "fingerprint": "<string>",
    "user_agent": "<string>",
    "languages": "<string>",
    "timezone": "<string>",
    "os": "<string>",
    "is_mobile": true
  },
  "ip": {
    "address": "<string>",
    "type": "<string>",
    "is_datacenter": true,
    "is_proxy": true,
    "is_tor": true,
    "is_vpn": true,
    "is_threat": true,
    "is_bogon": true,
    "asn": "<string>",
    "asn_number": 123
  },
  "location": {
    "city": "<string>",
    "postal_code": "<string>",
    "country": "<string>",
    "continent": "<string>",
    "latitude": 123,
    "longitude": 123
  },
  "session": {
    "started_at": "2023-11-07T05:31:56Z",
    "finished_at": "2023-11-07T05:31:56Z"
  }
}

Response Format

The API returns detailed information about the request, including:
  • Verdict - Whether the request should be allowed (can_pass: true/false)
  • Device information - Browser details, fingerprint, user agent
  • IP analysis - Location, threat indicators, proxy/VPN detection
  • Session data - Timing and behavioral analysis

Body

application/json

Plant to add to the store

api_key
string
required

Your Deflect API Key

action_id
string
required

Your Deflect Action ID

token
string
required

The user session token from the protected endpoint.

Response

Successful response

success
boolean
verdict
object
device
object
ip
object
location
object
session
object
I