post__mfa_verify-status

POST /mfa/verify-setup

Verify MFA Setup

Verify and complete the setup process for a multi-factor authentication method. This endpoint validates the user's setup verification and enables the MFA method upon successful verification.

TypeScript Client Library

// Note: This endpoint doesn't have a direct client method in the provided TypeScript client
// You would need to use the generic makeRequest method:
// this.makeRequest<any>('mfa/verify-setup', 'POST', { 
//   mfaType: 'GOOGLE_AUTH', 
//   code: '123456' 
// });

Code Samples

# You can also use wget
curl -X POST https://backend.flashback.tech/mfa/verify-setup \
  -H 'Content-Type: application/json' \
  -H 'Accept: application/json' \
  -H 'Authorization: Bearer {access-token}' \
  -d '{
    "mfaType": "GOOGLE_AUTH",
    "code": "123456"
  }'

POST https://backend.flashback.tech/mfa/verify-setup HTTP/1.1
Host: localhost:3000
Content-Type: application/json
Accept: application/json
Authorization: Bearer {access-token}

{
  "mfaType": "GOOGLE_AUTH",
  "code": "123456"
}

const inputBody = '{
  "mfaType": "GOOGLE_AUTH",
  "code": "123456"
}';
const headers = {
  'Content-Type':'application/json',
  'Accept':'application/json',
  'Authorization':'Bearer {access-token}'
};

fetch('https://backend.flashback.tech/mfa/verify-setup',
{
  method: 'POST',
  body: inputBody,
  headers: headers
})
.then(function(res) {
    return res.json();
}).then(function(body) {
    console.log(body);
});

require 'rest-client'
require 'json'

headers = {
  'Content-Type' => 'application/json',
  'Accept' => 'application/json',
  'Authorization' => 'Bearer {access-token}'
}

result = RestClient.post 'https://backend.flashback.tech/mfa/verify-setup',
  params: {
  }, headers: headers

p JSON.parse(result)

import requests
headers = {
  'Content-Type': 'application/json',
  'Accept': 'application/json',
  'Authorization': 'Bearer {access-token}'
}

r = requests.post('https://backend.flashback.tech/mfa/verify-setup', headers = headers)

print(r.json())

<?php

require 'vendor/autoload.php';

$headers = array(
    'Content-Type' => 'application/json',
    'Accept' => 'application/json',
    'Authorization' => 'Bearer {access-token}',
);

$client = new \GuzzleHttp\Client();

// Define array of request body.
$request_body = array(
    'mfaType' => 'GOOGLE_AUTH',
    'code' => '123456'
);

try {
    $response = $client->request('POST','https://backend.flashback.tech/mfa/verify-setup', array(
        'headers' => $headers,
        'json' => $request_body,
       )
    );
    print_r($response->getBody()->getContents());
 }
 catch (\GuzzleHttp\Exception\BadResponseException $e) {
    // handle exception or api errors.
    print_r($e->getMessage());
 }

 // ...

URL obj = new URL("https://backend.flashback.tech/mfa/verify-setup");
HttpURLConnection con = (HttpURLConnection) obj.openConnection();
con.setRequestMethod("POST");
con.setRequestProperty("Content-Type", "application/json");
con.setRequestProperty("Accept", "application/json");
con.setRequestProperty("Authorization", "Bearer {access-token}");
con.setDoOutput(true);

String jsonInputString = "{\"mfaType\":\"GOOGLE_AUTH\",\"code\":\"123456\"}";
try(OutputStream os = con.getOutputStream()) {
    byte[] input = jsonInputString.getBytes("utf-8");
    os.write(input, 0, input.length);           
}

int responseCode = con.getResponseCode();
BufferedReader in = new BufferedReader(
    new InputStreamReader(con.getInputStream()));
String inputLine;
StringBuffer response = new StringBuffer();
while ((inputLine = in.readLine()) != null) {
    response.append(inputLine);
}
in.close();
System.out.println(response.toString());

package main

import (
       "bytes"
       "net/http"
)

func main() {

    headers := map[string][]string{
        "Content-Type": []string{"application/json"},
        "Accept": []string{"application/json"},
        "Authorization": []string{"Bearer {access-token}"},
    }

    data := bytes.NewBuffer([]byte{`{"mfaType":"GOOGLE_AUTH","code":"123456"}`})
    req, err := http.NewRequest("POST", "https://backend.flashback.tech/mfa/verify-setup", data)
    req.Header = headers

    client := &http.Client{}
    resp, err := client.Do(req)
    // ...
}

Request Body

Name

Type

Required

Description

mfaType

string

true

Type of MFA method to verify

code

string

false

Verification code (for Google Auth)

credential

object

false

Passkey credential (for passkeys)

Body parameter

{
  "mfaType": "GOOGLE_AUTH",
  "code": "123456"
}

Example responses

200 Response

{
  "success": true,
  "message": "MFA setup verified and enabled"
}

400 Response

{
  "success": false,
  "error": "MFA setup verification failed"
}

500 Response

{
  "success": false,
  "error": "Failed to verify MFA setup"
}

Responses

Status

Meaning

Description

Schema

200

MFA setup verified successfully

Inline

400

Bad Request

Verification failed

Inline

500

Internal Server Error

Internal server error

Inline

Response Schema

Status Code 200

Name

Type

Required

Restrictions

Description

» success

boolean

false

none

Indicates if the request was successful

» message

string

false

none

Success message confirming verification

Status Code 400

Name

Type

Required

Restrictions

Description

» success

boolean

false

none

Indicates if the request was successful

» error

string

false

none

Error message describing the verification failure

Status Code 500

Name

Type

Required

Restrictions

Description

» success

boolean

false

none

Indicates if the request was successful

» error

string

false

none

Error message describing the issue

Enumerated Values

Parameter

Value

Description

» mfaType

GOOGLE_AUTH

Google Authenticator TOTP

» mfaType

MAGIC_LINK

Magic link email verification

» mfaType

PASSKEY

WebAuthn passkey authentication

Previouspost_mfa_setup Nextpost__mfa_enabled

Last updated 27 days ago

Was this helpful?