Autional Autional
API Reference GitHub autional.com →
mfa-service 81 endpoints

MFA Service

Port 11005 · 74 endpoints · micro-services/mfa-service/

Internal

MethodPathSummary
GET/internal/mfa/push/challenge/{credential_id}Internal get Push challenge statusdetail →

Multi-Factor Authentication

MethodPathSummary
GET/admin/mfa/backup-codesAdmin list all backup code configurationsdetail →
GET/admin/mfa/backup-codes/{user_id}Admin get user backup code countdetail →
GET/admin/mfa/config-audit-logsGet MFA configuration audit logsdetail →
GET/admin/mfa/ip-whitelistList IP whitelistdetail →
POST/admin/mfa/ip-whitelistCreate IP whitelistdetail →
DELETE/admin/mfa/ip-whitelist/{credential_id}Delete IP whitelistdetail →
GET/admin/mfa/ip-whitelist/{credential_id}Get IP whitelistdetail →
PUT/admin/mfa/ip-whitelist/{credential_id}Update IP whitelistdetail →
GET/admin/mfa/push/challengesAdmin view push challenge listdetail →
GET/admin/mfa/push/statsGet Push MFA challenge statisticsdetail →
DELETE/admin/mfa/reset/{user_id}Admin reset user MFAdetail →
GET/admin/mfa/risk-policiesList all risk policiesdetail →
POST/admin/mfa/risk-policies/evaluateEvaluate risk policydetail →
DELETE/admin/mfa/risk-policies/{level}Delete risk policy for specified leveldetail →
PUT/admin/mfa/risk-policies/{level}Update risk policy for specified leveldetail →
GET/admin/mfa/risk-policyGet MFA risk policydetail →
PUT/admin/mfa/risk-policyUpdate MFA risk policydetail →
GET/admin/mfa/totp/{user_id}Admin get user TOTP statusdetail →
POST/internal/mfa/eraseInternal erase user MFA datadetail →
GET/internal/mfa/push/challenge/{credential_id}Internal get Push challenge statusdetail →
GET/internal/mfa/status/{user_id}Internal get user MFA statusdetail →
GET/internal/mfa/totp/devicesInternal get TOTP device listdetail →
POST/internal/mfa/totp/disableInternal disable TOTPdetail →
POST/internal/mfa/totp/validateInternal verify TOTP codedetail →
GET/mfa/backup-codesView backup codesdetail →
GET/mfa/backup-codes/countView backup code countdetail →
POST/mfa/backup-codes/generateGenerate backup recovery codesdetail →
POST/mfa/backup-codes/verifyIndependent backup code verificationdetail →
POST/mfa/challengeCreate generic MFA challengedetail →
POST/mfa/credentials/{credential_id}/primarySet primary authentication methoddetail →
GET/mfa/devices/syncList synced devicesdetail →
POST/mfa/devices/syncSync device datadetail →
POST/mfa/email/disableDisable email MFAdetail →
PUT/mfa/email/enrollEmail MFA registrationdetail →
POST/mfa/email/sendSend email verification codedetail →
POST/mfa/email/verifyVerify email verificationdetail →
GET/mfa/methodsList MFA methodsdetail →
DELETE/mfa/methods/{method_type}Delete MFA methoddetail →
POST/mfa/push/approveApprove Push MFA challengedetail →
POST/mfa/push/challengeCreate Push MFA challengedetail →
GET/mfa/push/challenge/{credential_id}Get Push challenge statusdetail →
POST/mfa/push/denyDeny Push MFA challengedetail →
GET/mfa/push/historyGet Push MFA challenge historydetail →
POST/mfa/sms/disableDisable SMS MFAdetail →
PUT/mfa/sms/enrollSMS MFA Registrationdetail →
POST/mfa/sms/sendSend SMS Verification Codedetail →
POST/mfa/sms/verifyVerify SMS Verificationdetail →
GET/mfa/status/{user_id}Get User MFA Statusdetail →
POST/mfa/step-upMFA Step-Up Authenticationdetail →
GET/mfa/totp/devicesList TOTP Devicesdetail →
POST/mfa/totp/devicesRegister TOTP Devicedetail →
DELETE/mfa/totp/devices/{device_id}Revoke TOTP Devicedetail →
GET/mfa/totp/devices/{device_id}Get TOTP Device Detailsdetail →
POST/mfa/totp/devices/{device_id}/disableDisable TOTP Devicedetail →
POST/mfa/totp/devices/{device_id}/enableEnable TOTP Devicedetail →
POST/mfa/totp/disableDisable TOTPdetail →
POST/mfa/totp/enableEnable TOTP Multi-Factor Authenticationdetail →
POST/mfa/totp/setupEnable TOTP Multi-Factor Authenticationdetail →
POST/mfa/totp/validateVerify TOTP Code (During Login)detail →
POST/mfa/totp/verifyVerify and Enable TOTPdetail →
DELETE/mfa/trusted-devicesRevoke All Trusted Devicesdetail →
GET/mfa/trusted-devicesList Trusted Devicesdetail →
POST/mfa/trusted-devicesRemember Trusted Devicedetail →
GET/mfa/trusted-devices/checkCheck Device Trust Statusdetail →
POST/mfa/trusted-devices/cleanupClean Up Expired Trusted Devicesdetail →
DELETE/mfa/trusted-devices/{credential_id}Revoke Trusted Devicedetail →
GET/mfa/trusted-devices/{credential_id}Get Trusted Device Detailsdetail →
GET/mfa/webauthn/credentialsList WebAuthn Credentialsdetail →
POST/mfa/webauthn/credentials/registerStart WebAuthn Credential Registrationdetail →
POST/mfa/webauthn/credentials/register/verifyComplete WebAuthn Credential Registrationdetail →
DELETE/mfa/webauthn/credentials/{credential_id}Delete WebAuthn Credentialdetail →
GET/mfa/webauthn/credentials/{credential_id}Get WebAuthn Credential Detailsdetail →
PUT/mfa/webauthn/credentials/{credential_id}Rename WebAuthn Credentialdetail →

RBAC - Role

MethodPathSummary
GET/admin/mfa/push/challengesAdmin view push challenge listdetail →
GET/admin/mfa/push/statsGet Push MFA challenge statisticsdetail →

System

MethodPathSummary
GET/internal/schedulersList all scheduled tasksdetail →