Login with MFA
Initiate a Multi-Factor Authentication for a customer user, the caller must
have scope write:accounts:/auth/users to perform a login.
Post the ident_type, along with the ident and secret.
The server will return a challenge response specifying the
challenge_type that will have to be completed to when getting an access
token from the POST /v1/accounts/{oid}/auth/token endpoint.
scopes:
- write:accounts:/auth/users
Documentation Index
Fetch the complete documentation index at: https://docs.dintero.com/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Bearer authentication (token authentication) should be used for accessing the API.
Use Get Token to get an access token for client credentials. Pass the token in the request header:
Authorization: Bearer {access_token}where the access_token is JSON Web Tokens (JWT).
Path Parameters
An id that uniquely identifies the account.
9Body
credentials
phone_number, email Email or phone_number, depending on the ident_type.
The unique identifier of the target API you want to access. The audience must be a grant associated with the client used when calling this resource.
user type to login, required as users with different type can share email
customer, company The customers pin or password.
Response
MFA login challenge
[
{
"rel": "mfa_challenge",
"href": "https://test.dintero.com/v1/accounts/T11223351/auth/mfa/challenge"
},
{
"rel": "mfa_oob",
"href": "https://test.dintero.com/v1/accounts/T11223351/auth/token"
}
]MFA challenge token
MFA challenge types
oob(out of band) means that the user will get an out of band message containing abinding_codethat will have to be submitted along with themfa_tokenwhen answering the mfa challenge
oob The channel to use for OOB
sms, email