Common Questions

A collection of answers to common questions when integrating OnSefy into your application.

🔹General#

1. Can I use OnSefy in any language?#

Yes. OnSefy is an HTTP-based JSON API. You can use it in any language that supports HTTP requests—like Node.js, Python, PHP, Go, Ruby, Java, and others.

2. Where do I get my API key and service ID?#

• Log in at https://onsefy.com/login
• Go to your Application Settings
• You’ll find and can generate your API Key and Service ID

Refer to the API Key Setup section for details.

3. How is OnSefy’s risk score calculated?#

The score is generated using our internal trust engine called NeonShield.
It analyzes behavior, known patterns, metadata, and inconsistencies to determine the trustworthiness of a request.

For more details, check Trust Scoring Strategy.

🔹Integration & Debugging#

1. Why is my IP flagged as proxy/VPN even though it’s clean?#

Ensure you’re not accidentally sending Cloudflare’s IP to OnSefy.
Use headers like CF-Connecting-IP or X-Forwarded-For to extract the real client IP.

2. My user agent is getting flagged—why?#

OnSefy flags suspicious or outdated browsers, bots, or malformed strings.
Make sure the user_agent string is captured directly from the browser or server request header.

3. I’m getting an error with phone or name — what should I do?#

Check that:

• Phone numbers use E.164 format (+15551234567)
• Name fields are human-readable and not spammy or system-generated

The parameters object in the response will provide field-level details to debug.

4. What are risk_patterns in the response?#

These are identified behaviors or inconsistencies like:

• phone_ip_mismatch
• temp_email_vpn
• name_email_similarity

They help explain why a certain score or label was given.

🔹Support#

If you need help or want to report an issue:

• 🎫 Support Ticket Submit Request
• 📧 Email:
• 📘 Docs: You’re already here 😉