GET /admin/tenants/{tenant_id}/auth-policy
Get the authentication policy configuration for a tenant, including MFA, session, OAuth, etc.
Tenant Service `bearerAuth` application/json
Request Parameters
| Name | In | Type | Required | Default | Example | Constraints | Description |
id |
path |
string |
Yes |
|
|
|
Tenant ID |
Referenced Schemas
dto.AuthPolicyDetailResponse
| Field | Type | Required | Example | Constraints | Description |
code |
integer |
No |
|
|
|
data |
dto.AuthPolicyResponse |
No |
|
|
|
message |
string |
No |
|
|
|
timestamp |
string |
No |
|
|
|
dto.AuthPolicyResponse
| Field | Type | Required | Example | Constraints | Description |
captcha_enabled |
boolean |
No |
|
|
|
change_cooldown_minutes |
integer |
No |
|
|
|
check_breached_passwords |
boolean |
No |
|
|
|
cross_tenant_switch_enabled |
boolean |
No |
|
|
|
device_fingerprint_enabled |
boolean |
No |
|
|
|
device_trust_duration_hours |
integer |
No |
|
|
|
expiry_days |
integer |
No |
|
|
|
force_change_on_first_login |
boolean |
No |
|
|
|
grace_period_days |
integer |
No |
|
|
|
history_count |
integer |
No |
|
|
|
lockout_attempts |
integer |
No |
|
|
|
lockout_duration_minutes |
integer |
No |
|
|
|
login_methods |
string |
No |
|
|
|
magic_link_enabled |
boolean |
No |
|
|
|
max_concurrent_sessions |
integer |
No |
|
|
|
max_devices_per_user |
integer |
No |
|
|
|
max_length |
integer |
No |
|
|
|
mfa_enabled |
boolean |
No |
|
|
|
mfa_enforce_for_all |
boolean |
No |
|
|
|
mfa_enforce_for_high_risk |
boolean |
No |
|
|
|
mfa_enforce_for_new_device |
boolean |
No |
|
|
|
mfa_methods |
string |
No |
|
|
|
mfa_preferred_methods |
string |
No |
|
|
|
mfa_required_user_role |
string |
No |
|
|
|
min_length |
integer |
No |
|
|
|
oauth_providers |
string |
No |
|
|
|
otp_code_length |
integer |
No |
|
|
|
otp_email_ttl_minutes |
integer |
No |
|
|
|
otp_max_attempts |
integer |
No |
|
|
|
otp_sms_ttl_minutes |
integer |
No |
|
|
|
passkey_enabled |
boolean |
No |
|
|
|
passkey_max_credentials |
integer |
No |
|
|
|
passkey_user_verification |
string |
No |
|
|
|
password_transmission |
string |
No |
|
|
|
pepper_enabled |
boolean |
No |
|
|
|
refresh_token_rotation |
boolean |
No |
|
|
|
remember_me_days |
integer |
No |
|
|
|
require_digits |
boolean |
No |
|
|
|
require_lowercase |
boolean |
No |
|
|
|
require_special_chars |
boolean |
No |
|
|
|
require_uppercase |
boolean |
No |
|
|
|
session_bind_to_device |
boolean |
No |
|
|
|
session_idle_timeout |
string |
No |
|
|
|
session_timeout |
string |
No |
|
|
|
silent_challenge_enabled |
boolean |
No |
|
|
|
sso_providers |
string |
No |
|
|
|
tenant_id |
string |
No |
|
|
|
web3_enabled |
boolean |
No |
|
|
|
gitee_com_linmes_authms_base_dto.SimpleResponse
| Field | Type | Required | Example | Constraints | Description |
code |
integer |
No |
|
|
|
message |
string |
No |
|
|
|
timestamp |
string |
No |
|
|
|