openapi: 3.0.3 info: title: SIM Swap description: | The SIM swap API provides a programmable interface for developers and other users (capabilities consumers) to request the last date of a SIM swap performed on the mobile line, or, to check whether a SIM swap has been performed during a past period. # Introduction The SIM Swap API performs real-time checks on the activation date of a SIM card on the mobile network. It reveals if an individual mobile phone number (MSISDN) has been ported to another SIM card. The SIM Swap API is useful to prevent fraud by reducing the risk of account takeover fraud by strengthening SIM based authentication processes such as SMS One-time passwords. Fraudsters are using SIM swap techniques to intercept SMS messages and reset passwords or receive verification codes that allow them to access protected accounts. This API is used by an application to get information about a mobile line latest SIM swap date. It can be easily integrated and used through this secured API and allows SPs (Service Provider) to get this information an easy & secured way. The API provides management of 2 resources answering 2 distinct questions: * When did the last SIM swap occur? * Has a SIM swap occurred during last n hours? Depending on the network provider implementation, legal enforcement, etc... either one or both resources could be implemented. # Relevant terms and definitions * **SIM swap**: A SIM swap is a process in which a mobile phone user's current SIM card is deactivated or replaced with a new one. This is typically done by contacting the user's mobile service provider and requesting a new SIM card for various reasons, such as a lost or damaged SIM card, upgrading to a new phone, or changing phone numbers while keeping the same device. # API functionality The API provides 2 operations: - POST retrieve-date : Provides timestamp of latest SIM swap, if any, for a given phone number. - POST check: Checks if SIM swap has been performed during a past period (defined in the request with 'maxAge' attribute) for a given phone number. version: 0.4.1 servers: - url: https://apigw.omantel.om variables: apiRoot: default: https://apigw.omantel.om description: API root basePath: default: /v1/sim-swap description: Base path for the simSwap API paths: /v1/sim-swap/msidn/retrieve-date: post: security: - oAuth2ClientCredentials: [] tags: - Retrieve SIM swap date description: Get timestamp of last MSISDN <-> IMSI pairing change for a mobile user account provided with MSIDN. operationId: retrieveSimSwapDate requestBody: description: | Create a SIM swap date request for a MSISDN identifier. content : application/json: schema: $ref: "#/components/schemas/CreateSimSwapDate" required: true responses: "200": description: Contains information about SIM swap change content: application/json: schema: $ref: "#/components/schemas/SimSwapInfo" "400": $ref: "#/components/responses/Generic400" "401": $ref: "#/components/responses/Generic401" "403": $ref: "#/components/responses/Generic403" "404": $ref: "#/components/responses/Generic404" "409": $ref: "#/components/responses/Generic409" "500": $ref: "#/components/responses/Generic500" "503": $ref: "#/components/responses/Generic503" "504": $ref: "#/components/responses/Generic504" /v1/sim-swap/msidn/status: post: security: - oAuth2ClientCredentials: [] tags: - Check SIM swap description: Check if SIM swap has been performed during a past period operationId: checkSimSwap requestBody: description: | Create a check SIM swap request for a MSISDN identifier. content : application/json: schema: $ref: "#/components/schemas/CreateCheckSimSwap" required: true responses: "200": description: Returns whether a SIM swap has been performed during a past period content: application/json: schema: $ref: "#/components/schemas/CheckSimSwapInfo" "400": $ref: "#/components/responses/Generic400" "401": $ref: "#/components/responses/Generic401" "403": $ref: "#/components/responses/Generic403" "404": $ref: "#/components/responses/Generic404" "409": $ref: "#/components/responses/Generic409" "500": $ref: "#/components/responses/Generic500" "503": $ref: "#/components/responses/Generic503" "504": $ref: "#/components/responses/Generic504" components: securitySchemes: oAuth2ClientCredentials: type: oauth2 flows: clientCredentials: tokenUrl: https://apigw.omantel.om/oauth2/accesstoken scopes: check-sim-swap: checkSimSwap operation retrieve-sim-swap-date: retrieveSimSwapDate operation schemas: SimSwapInfo: type: object properties: latestSimChange: type: string format: date-time description: Timestamp of latest SIM swap performed CheckSimSwapInfo: type: object properties: swapped: type: boolean description: Indicates whether the SIM card has been swapped during the period within the provided age. PhoneNumber: type: string pattern: '^\+?[0-9]{5,15}$' example: '+346661113334' description: Subscriber number in E.164 format (starting with country code). Optionally prefixed with '+'. ErrorInfo: type: object required: - status - code - message properties: status: type: integer description: HTTP response status code code: type: string description: Code given to this error message: type: string description: Detailed error description CreateCheckSimSwap: type: object properties: phoneNumber: $ref: "#/components/schemas/PhoneNumber" maxAge: type: integer example: 240 description: | Period in hours to be checked for SIM swap. format: int32 minimum: 1 maximum: 2400 default: 240 CreateSimSwapDate: type: object properties: phoneNumber: $ref: "#/components/schemas/PhoneNumber" responses: Generic400: description: Problem with the client request content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 400 code: INVALID_ARGUMENT message: Client specified an invalid argument, request body or query param Generic401: description: Authentication problem with the client request content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 401 code: UNAUTHENTICATED message: Request not authenticated due to missing, invalid, or expired credentials Generic403: description: Client does not have sufficient permission content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 403 code: PERMISSION_DENIED message: Client does not have sufficient permissions to perform this action Generic404: description: Resource Not Found content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 404 code: SIM_SWAP.UNKNOWN_PHONE_NUMBER message: SIM Swap can't be checked because the phone number is unknown Generic409: description: Conflict content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 409 code: CONFLICT message: Another request is created for the same MSISDN Generic500: description: Server error content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 500 code: INTERNAL message: Server error Generic503: description: Service unavailable. Typically the server is down content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 503 code: UNAVAILABLE message: Service unavailable Generic504: description: Request time exceeded. If it happens repeatedly, consider reducing the request complexity content: application/json: schema: $ref: '#/components/schemas/ErrorInfo' example: status: 504 code: TIMEOUT message: Request timeout exceeded. Try later