Autional Autional
API Reference GitHub autional.com →

GET /mfa/push/challenge/{credential_id}

Query the current status of a single Push MFA challenge by challenge ID, used for polling on the login page. Reference: NIST SP 800-63B §5.1.7 (Verifier Impersonation Resistance), OWASP ASVS V2.8.

Multi-Factor Authentication `bearerAuth` application/json

Request Parameters

NameInTypeRequiredDefaultExampleConstraintsDescription
id path string Yes Challenge ID

Responses

StatusDescriptionSchema
200Challenge statusdto.PushChallengeStatusDetailResponse
400Invalid parametergitee_com_linmes_authms_base_dto.SimpleResponse
401Unauthenticatedgitee_com_linmes_authms_base_dto.SimpleResponse
404Challenge not foundgitee_com_linmes_authms_base_dto.SimpleResponse
500Internal server errorgitee_com_linmes_authms_base_dto.SimpleResponse

Referenced Schemas

dto.PushChallengeStatusDetailResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
data dto.PushChallengeStatusResponse No
message string No
timestamp string No

dto.PushChallengeStatusResponse

FieldTypeRequiredExampleConstraintsDescription
challenge_id string No chal-abc123
login_context string No login from Beijing
number_matching string No 42
resolved_at string No 2026-05-25T12:05:00Z
status string No approved

gitee_com_linmes_authms_base_dto.SimpleResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
message string No
timestamp string No