MLS IDX API

Home
Services
Demo
Support

Getting Started

An overview of how to use our API

Documentation

Specific details about our REST API

Code Samples

See our API in action
News
Get Started

Authentication

September 19, 2025

All access to the MLS IDX API requires authentication using digest authentication (RFC 2617, HTTP Authentication).

Login Requirement
A client must issue a Login request before making any other request. The Login transaction validates the provided credentials and initiates a session.
Session Management
Once authenticated, session control may be handled through HTTP cookies or other supported methods. Clients must support at least session control via cookies.
Credentials
Each registered MLS IDX API user is assigned unique authentication credentials when their data feed is set up. These credentials identify the user and grant access to all property, agent, and office data available to them.
Subsequent Requests
All requests for Metadata, Search, GetObject, and Logout must include both the Digest Authentication authorization header and the active session cookie.

Appendix M – Complete List of Metadata Lookups Available

17 October 2025

Resource Metadata-Lookup Property Access Type Property Amenities Property AmenitiesNearby Property Amperage Property Appliances Property ArchitecturalStyle Property BasementDevelopment Property BasementFeatures Property BasementType Property Boards Property BuildingType

Appendix L – Reply Codes

16 October 2025

Transaction ReplyCode Meaning LoginMetadataSearchGetObjectLogout 0 Operation successful Login 20022 Additional login not permittedThere is already a user logged in with this user name, and this

Digest Authentication Response Calculations

15 October 2025

https://en.wikipedia.org/wiki/Digest_access_authentication The “response” value is calculated in three steps, as follows. Where values are combined, theyare delimited by colon symbols.

Appendix K – Digest Authentication

15 October 2025

Digest Authentication is a security mechanism that allows a client application to authenticate itself to the server by sending a message digest along with its HTTP request. The

Appendix J- PropertyDetails Payload (Compact)

6 October 2025

Payload based on RESO Data Dictionary 1.0: https://www.reso.org/data-dictionary Standard Name Data Type Encoded Lookup Name RESO Field Description ArchitecturalStyle String Y A list describing the

Appendix I – Website Payload

6 October 2025

Parent Cardinality Name Type Description Lookup Websites 1..* Website String The website of the organization Website 1 ContactType String (Attribute) The type of contact (Business,

Authentication

SHARE POST: