Docs › API Reference › MFA Service › GET /internal/mfa/totp/devices
GET /internal/mfa/totp/devices
Internal get user TOTP device list without JWT authentication, called by other services (identity-service). Requires X-Tenant-ID and InternalAPIKey authentication. Reference: RFC 6238 (TOTP), OWASP ASVS V2.8.3.
Multi-Factor Authentication None application/json
Request Parameters
Name In Type Required Default Example Constraints Description
user_id
query
string
Yes
User ID
X-Tenant-ID
header
string
Yes
Tenant ID
Referenced Schemas
dto.TOTPDeviceItem
Field Type Required Example Constraints Description
created_at
string
No
2026-05-12T12:00:00Z
device_id
string
No
dev-abc123
device_name
string
No
iPhone 15
enabled
boolean
No
True
last_used_at
string
No
2026-05-12T12:00:00Z
verified
boolean
No
True
dto.TOTPDeviceListResponse
Field Type Required Example Constraints Description
code
integer
No
items
array ofSee dto.TOTPDeviceItem
No
Use items uniformly
message
string
No
pagination
object
No
Pagination information (nested object)
timestamp
string
No
total
integer
No
Total count (flattened for direct reading)
gitee_com_linmes_authms_base_dto.PageInfo
Field Type Required Example Constraints Description
has_next
boolean
No
HasNext indicates whether there is a next page
has_prev
boolean
No
HasPrev indicates whether there is a previous page
page
integer
No
Page is the current page number (1-based)
page_size
integer
No
PageSize is the number of items per page
total
integer
No
Total is the total number of items across all pages
total_pages
integer
No
TotalPages is the total number of pages
gitee_com_linmes_authms_base_dto.SimpleResponse
Field Type Required Example Constraints Description
code
integer
No
message
string
No
timestamp
string
No