Autional Autional
API Reference GitHub autional.com →

POST /admin/mfa/risk-policies/evaluate

Pass user context (user_id, IP, device fingerprint) and return the assessed risk level and required MFA methods. Reference: NIST SP 800-63B §5.2 (Risk-based Authentication). Requires admin permissions.

Multi-Factor Authentication `bearerAuth` application/json

Request Body

Schema: dto.EvaluateRiskPolicyRequest

FieldTypeRequiredExampleConstraintsDescription
user_id string Yes
device_fingerprint string No
ip string No

Responses

StatusDescriptionSchema
200Evaluation resultdto.EvaluateRiskPolicyDetailResponse
400Invalid parametergitee_com_linmes_authms_base_dto.SimpleResponse
401Unauthenticatedgitee_com_linmes_authms_base_dto.SimpleResponse
403Insufficient permissionsgitee_com_linmes_authms_base_dto.SimpleResponse
500Internal server errorgitee_com_linmes_authms_base_dto.SimpleResponse

Referenced Schemas

dto.EvaluateRiskPolicyDetailResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
data dto.EvaluateRiskPolicyResponse No
message string No
timestamp string No

dto.EvaluateRiskPolicyResponse

FieldTypeRequiredExampleConstraintsDescription
is_new_device boolean No False
level string No medium
required_methods array of

string

No ['["totp"', '"sms"]']

gitee_com_linmes_authms_base_dto.SimpleResponse

FieldTypeRequiredExampleConstraintsDescription
code integer No
message string No
timestamp string No