# MFA (multi-factor authentication) The table below provides a comprehensive overview of the Flashback API multi-factor authentication endpoints, grouped by functional area. Each section lists the available HTTP functions along with a concise description of their purpose, helping developers understand how to implement secure multi-factor authentication. {% hint style="info" %} Multi-factor authentication enhances security by requiring users to provide additional verification beyond their password. The Flashback platform supports multiple MFA methods including Google Authenticator, Magic Links, and WebAuthn Passkeys. {% endhint %} ## MFA Status & Methods API Calls
MethodAPI ReferenceDescription
GET/mfa/statusget__mfa_statusGet the current MFA status for the authenticated user.
GET/mfa/methodsget__mfa_methodsGet available MFA methods and their configuration status.
## MFA Setup & Configuration API Calls
MethodAPI ReferenceDescription
POST/mfa/setuppost_mfa_setupInitialize setup for an MFA method.
POST/mfa/verify-setuppost__mfa_verify-setupVerify and complete MFA setup process.
POST/mfa/enablepost__mfa_enableEnable a configured MFA method.
POST/mfa/disablepost_mfa_disableDisable an enabled MFA method.
## MFA Management API Calls
MethodAPI ReferenceDescription
POST/mfa/primarypost__mfa_primarySet the primary MFA method for the user.
POST/mfa/resetpost__mfa_resetReset user's MFA configuration (self-service).
POST/mfa/organization/enforcepost__mfa_organization_enforceEnforce MFA for organization members (admin only).
## Magic Link MFA API Calls
MethodAPI ReferenceDescription
POST/mfa/magic-link/sendpost__mfa_magic-link_sendSend magic link for MFA verification.
POST/mfa/magic-link/activatepost__mfa_magic-link_activateActivate magic link MFA during setup.
## Passkey MFA API Calls
MethodAPI ReferenceDescription
POST/mfa/passkey/auth-optionspost__passkey_auth-optionsGenerate authentication options for passkeys.
POST/mfa/passkey/complete-registrationpost__mfa_passkey_complete-registrationComplete passkey registration process.
POST/mfa/passkey/complete-registration-1post__mfa_passkey_complete-registration-1Alternative passkey registration endpoint.
## MFA Authentication Flow ### 1. **Setup Phase** * User initiates MFA setup with `/mfa/setup` * System generates configuration data (QR codes, challenges, etc.) * User completes verification with `/mfa/verify-setup` * MFA method is enabled with `/mfa/enable` ### 2. **Authentication Phase** * User provides primary credentials (username/password) * System prompts for MFA verification * User completes MFA challenge * Full access is granted upon successful verification ### 3. **Management Phase** * Users can manage their MFA methods * Set primary MFA method * Enable/disable specific methods * Reset MFA configuration when needed ## Supported MFA Methods * **Google Authenticator**: Time-based one-time passwords (TOTP) * **Magic Links**: Secure email-based authentication * **Passkeys**: WebAuthn-based biometric or hardware key authentication {% hint style="warning" %} **Security Note**: MFA significantly enhances account security. Always use HTTPS in production and ensure proper session management. Users should have backup MFA methods configured. {% endhint %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.flashback.tech/support-reference/platform-api-reference/mfa-multi-factor-authentication.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.