MFA recovery
Initiate a Multi-Factor Authentication recovery login for a customer user
that has forgotten/lost their secret.
Specify the ident_type and the ident (email or phone_number) of the user. If
the call is successful, the user will get an email with an one time recovery
code that has to be submitted to the mfa_recovery endpoint.
When a valid one time recovery has been posted the server response with a
regular MFA challenge.
Once authenticated the password or pin can be changed by updating the
customer.
scopes:
- write:accounts:/auth/users
Documentation Index
Fetch the complete documentation index at: https://docs.dintero.com/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Bearer authentication (token authentication) should be used for accessing the API.
Use Get Token to get an access token for client credentials. Pass the token in the request header:
Authorization: Bearer {access_token}where the access_token is JSON Web Tokens (JWT).
Path Parameters
An id that uniquely identifies the account.
9Body
phone_number, email Email or phone_number, depending on the ident_type.
The unique identifier of the target API you want to access. The audience must be a grant associated with the client used when calling this resource.
user type to login, required as users with different type can share email
customer, company Response
Recovery MFA challenge
"bkaiew...akas"
MFA challenge types
oob(out of band) means that the user will get an out of band message containing arecovery_codethat will have to be submitted along with therecovery_tokenwhen answering the MFA recovery challenge.
oob prompt