PATCH /api/my-account/logto-configs
O auth2

Update the exposed portion of the current user's logto config. Supports updating MFA states (enabled, skipped, skipMfaOnSignIn) and passkey sign-in binding states (skipped). Passkey is a WebAuthn MFA factor and shares the same account center field access control as MFA.

application/json

Body Required

  • mfa object
    Hide mfa attributes Show mfa attributes object
    • enabled boolean

      Set whether MFA is enabled for the user.

    • skipped boolean

      Set whether the user is marked as having skipped MFA binding.

    • skipMfaOnSignIn boolean

      Set whether the user has opted to skip MFA verification on sign-in. This is ignored when the MFA policy is mandatory.

  • passkeySignIn object
    Hide passkeySignIn attribute Show passkeySignIn attribute object
    • skipped boolean

      Set whether the user has persistently skipped binding a passkey for sign-in.

Responses

  • 200 application/json

    The exposed logto_config fields were updated successfully.

    Hide response attributes Show response attributes object
    • mfa object Required
      Hide mfa attributes Show mfa attributes object
      • enabled boolean
      • skipped boolean Required
      • skipMfaOnSignIn boolean Required
    • passkeySignIn object Required
      Hide passkeySignIn attribute Show passkeySignIn attribute object
      • skipped boolean Required
  • 400

    The request body is invalid.

  • 401

    Permission denied due to insufficient scope.

  • 403

    Forbidden

PATCH /api/my-account/logto-configs 
curl \
 --request PATCH 'https://[tenant_id].logto.app/api/my-account/logto-configs' \
 --header "Authorization: Bearer $ACCESS_TOKEN" \
 --header "Content-Type: application/json" \
 --data '{"mfa":{"enabled":true,"skipped":true,"skipMfaOnSignIn":true},"passkeySignIn":{"skipped":true}}'
Request examples 
{
  "mfa": {
    "enabled": true,
    "skipped": true,
    "skipMfaOnSignIn": true
  },
  "passkeySignIn": {
    "skipped": true
  }
}
Response examples (200) 
{
  "mfa": {
    "enabled": true,
    "skipped": true,
    "skipMfaOnSignIn": true
  },
  "passkeySignIn": {
    "skipped": true
  }
}