Create an MFA verification for a user

POST /api/users/{userId}/mfa-verifications

OAuth2

Create a new MFA verification for a given user ID.

Path parameters

userId string Required

The unique identifier of the user.

application/json

Body object Required

Responses

200 application/json

The MFA verification that was created.
One of:
object-1 object object-2 object
Hide attributes Show attributes

type string("Totp") Required

secret string Required

secretQrCode string Required
Hide attributes Show attributes

type string("BackupCode") Required

codes array[string] Required
400

Bad Request
401

Unauthorized
403

Forbidden
404

Not Found
422

Unprocessable Content

POST /api/users/{userId}/mfa-verifications

curl \
 -X POST https://[tenant_id].logto.app/api/users/{userId}/mfa-verifications \
 -H "Authorization: Bearer $ACCESS_TOKEN" \
 -H "Content-Type: application/json" \
 -d '{"type":"string","secret":"string"}'

Request examples

{
  "type": "string",
  "secret": "string"
}

{
  "type": "string",
  "codes": [
    "string"
  ]
}

{
  "type": "string",
  "secret": "string"
}

{
  "type": "string",
  "codes": [
    "string"
  ]
}

Response examples (200)

{
  "type": "string",
  "secret": "string",
  "secretQrCode": "string"
}

{
  "type": "string",
  "codes": [
    "string"
  ]
}