From 925cae184405bea4686d8f04dc5026a061e63775 Mon Sep 17 00:00:00 2001 From: "AzureAD\\NikhilSahu" Date: Thu, 14 Nov 2024 04:42:21 +0530 Subject: [PATCH 1/7] MFA passkey and overview --- .../account_passkey_mfa_register_begin.json | 93 +++++++ .../account_passkey_mfa_register_finish.json | 243 ++++++++++++++++++ ...count_reset_mfa_passkey_authenticator.json | 42 +++ .../passkey/passkey-mfa-register-begin.json | 92 +++++++ .../passkey/passkey_mfa_register_finish.json | 59 +++++ .../passkey/passkey_mfa_verify_begin.json | 47 ++++ .../passkey/passkey_mfa_verify_finish.json | 62 +++++ .../reset_mfa_passkey_authenticator.json | 33 +++ .../passkey/overview | 43 ++++ database/apidocs/menus/v2.json | 49 +++- 10 files changed, 762 insertions(+), 1 deletion(-) create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json create mode 100644 database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json create mode 100644 database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json new file mode 100644 index 00000000..a43b9a0a --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json @@ -0,0 +1,93 @@ +{ + "name": "Passkey MFA register begin", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/account/2fa/register/passkey/begin", + "method": "GET", + "getparams": { + "apikey*": "@apikey@", + "secondfactorauthenticationtoken*":"" + }, + "postparams":"", + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to begin the MFA passkey registration in the account using the Access token.", + "parameters": { + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + }], + "Headers Parameters": [{ + "name": "Authorization", + "is_required": true, + "description": "Bearer <ACCESS_TOKEN> (User's access_token)" + }] + }, + "outputFormat": + { + "RegisterBeginCredential": { + "publicKey": { + "rp": { + "name": "LoginRadius App", + "id": "localhost" + }, + "user": { + "name": "f04d624989314945a95*************", + "displayName": "f04d62498931494***************", + "id": "ZjA0ZDYyNDk4OTMxNDk0NWE5NTBjNmE***********" + }, + "challenge": "1x9aUZmA5hCXdvt8szxILDmnWUWWkXgkAE61tC_7yJc", + "pubKeyCredParams": [ + { + "type": "public-key", + "alg": -7 + }, + { + "type": "public-key", + "alg": -35 + }, + { + "type": "public-key", + "alg": -36 + }, + { + "type": "public-key", + "alg": -257 + }, + { + "type": "public-key", + "alg": -258 + }, + { + "type": "public-key", + "alg": -259 + }, + { + "type": "public-key", + "alg": -37 + }, + { + "type": "public-key", + "alg": -38 + }, + { + "type": "public-key", + "alg": -39 + }, + { + "type": "public-key", + "alg": -8 + } + ], + "timeout": 60000, + "authenticatorSelection": { + "requireResidentKey": false, + "userVerification": "preferred" + } + } + } + } +} diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json new file mode 100644 index 00000000..7c9b1b84 --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json @@ -0,0 +1,243 @@ +{ + "name": "Account: Passkey MFA register finish", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/account/2fa/register/passkey/finish", + "method": "Post", + "getparams": { + "apikey*": "@apikey@", + "Authorization":"Bearer " + }, + "postparams":{ + "Email": [ + { + "Type": "Primary", + "Value": "" + } + ], + "PasskeyCredential": { + "id": "", + "rawId": "", + "type": "public-key", + "response": { + "attestationObject": "", + "clientDataJSON": "" + } + }, + "FirstName": "Test", + "MiddleName": null, + "LastName": "Account", + "Suffix": null, + "FullName": "Test Account", + "NickName": null, + "ProfileName": null, + "BirthDate": "10-12-1985", + "Gender": "M", + "Website": null, + "Password": "******", + "PINInfo": { + "PIN": "", + "Skipped": true + }, + "Consents": { + "Events": [ + { + "Event": "Register", + "IsCustom": false + } + ], + "Data": [ + { + "ConsentOptionId": "someid", + "IsAccepted": true + } + ] + }, + "Country": { + "Code": "", + "Name": "India" + }, + "ThumbnailImageUrl": null, + "ImageUrl": null, + "Favicon": null, + "ProfileUrl": null, + "HomeTown": null, + "State": "Alberta", + "City": "Edmonton", + "Industry": null, + "About": null, + "TimeZone": null, + "LocalLanguage": null, + "CoverPhoto": null, + "TagLine": null, + "Positions": [ + { + "Positions": "astronaut", + "Summary": "An astronaut.", + "StartDate": "", + "EndDate": "", + "IsCurrent": "", + "Location": "", + "Company": { + "Name": "", + "Type": "", + "Industry": "" + } + } + ], + "Educations": [ + { + "School": null, + "year": null, + "type": null, + "notes": null, + "activities": null, + "degree": null, + "fieldofstudy": null, + "StartDate": null, + "EndDate": null + } + ], + "PhoneNumbers": [ + { + "PhoneType": "Mobile", + "PhoneNumber": "***********" + } + ], + "IMAccounts": [ + { + "AccountType": "personal", + "AccountName": "AccountName" + } + ], + "Addresses": [ + { + "Type": "Primary", + "Address1": null, + "Address2": null, + "City": "Edmonton", + "State": "Alberta", + "PostalCode": null, + "Region": null, + "Country": "Canada" + } + ], + "MainAddress": null, + "LocalCity": null, + "ProfileCity": "Edmonton", + "LocalCountry": null, + "ProfileCountry": "Canada", + "IsProtected": false, + "RelationshipStatus": null, + "Quota": null, + "Quote": null, + "InterestedIn": [ + "blah", + "blah" + ], + "Interests": [ + { + "InterestedType": null, + "InterestedName": null + } + ], + "Religion": null, + "Political": null, + "Sports": [ + { + "Id": null, + "Name": null + } + ], + "InspirationalPeople": [ + { + "Id": null, + "Name": null + } + ], + "HttpsImageUrl": null, + "FollowersCount": 0, + "FriendsCount": 0, + "IsGeoEnabled": null, + "TotalStatusesCount": 0, + "Associations": null, + "NumRecommenders": 0, + "Honors": null, + "Awards": null, + "Skills": null, + "CurrentStatus": null, + "Certifications": null, + "Courses": null, + "Volunteer": null, + "RecommendationsReceived": null, + "Languages": null, + "Projects": null, + "Games": null, + "Family": null, + "TeleVisionShow": null, + "MutualFriends": null, + "Movies": null, + "Books": null, + "AgeRange": null, + "PublicRepository": null, + "Hireable": false, + "RepositoryUrl": null, + "Age": null, + "Patents": null, + "FavoriteThings": null, + "ProfessionalHeadline": null, + "ProviderAccessCredential": null, + "RelatedProfileViews": null, + "LRUserID": null, + "PlacesLived": null, + "Publications": null, + "JobBookmarks": null, + "Suggestions": null, + "Badges": null, + "MemberUrlResources": null, + "TotalPrivateRepository": 0, + "Currency": null, + "StarredUrl": null, + "GistsUrl": null, + "PublicGists": 0, + "PrivateGists": 0, + "Subscription": null, + "Company": null, + "GravatarImageUrl": null, + "ProfileImageUrls": null, + "WebProfiles": { + "Small": "https://graph.facebook.com/*****/picture?type=small", + "Square": "https://graph.Profile.com/*****/picture?type=square", + "Large": "https://graph.facebook.com/*****/picture?type=large", + "Profile": "https://graph.facebook.com/******/picture?type=normal" + }, + "Uid": "xxxx", + "CustomFields": null, + "IsEmailSubscribed": false, + "UserName": null, + "PhoneId": "***********" +}, + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to register a mobile device app for Push MFA, It will be used when Push MFA is enabled on the LoginRadius account.", + "parameters":{ + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + } + ] +}, + "outputFormat": +{ + "IsPosted": true, + "access_token": "", + "refresh_token": "", + "expires_in": "", + "session_token": "", + "session_expires_in": "", + "Profile": "" + +}} \ No newline at end of file diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json new file mode 100644 index 00000000..47b513a5 --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json @@ -0,0 +1,42 @@ +{ + "name": "Account MFA Passkey Authenticator", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/account/2fa/authenticator/passkey", + "method": "DELETE", + "getparams": { + "apikey*": "@apikey@", + "apisecret*": "@secret@", + "uid": "" + }, +"postparams":"", +"headers":{ + "content-Type":"application/json", + "Authorization":"Bearer " +}, +"response":"json", +"description": "This API is used to list user passkeys with managed API", +"parameters": { + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "The API key of the LoginRadius account" + }, + { + "name": "apisecret", + "is_required": true, + "description": "The API secret of the LoginRadius account" + }, + { + "name": "uid", + "is_required": true, + "description": "The UID associated with the user" + } + ] +}, +"outputFormat": +{ + "IsDeleted": true +} + +} diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json new file mode 100644 index 00000000..6fb1d2a2 --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json @@ -0,0 +1,92 @@ +{ + "name": "Passkey MFA register begin", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/login/2fa/register/passkey/begin", + "method": "GET", + "getparams": { + "apikey*": "@apikey@", + "Authorization":"Bearer " + }, + "postparams":"", + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to begin the MFA passkey verification flow. In the query parameter, this will require to pass the second-factor token", + "parameters": { + "Get Params": [{ + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + } ], + "Headers Parameters": [{ + "name": "Authorization", + "is_required": true, + "description": "Bearer <ACCESS_TOKEN> (User's access_token)" + }] + }, + "outputFormat": + { + "RegisterBeginCredential": { + "publicKey": { + "rp": { + "name": "LoginRadius App", + "id": "localhost" + }, + "user": { + "name": "example@mail.com", + "displayName": "pushauth", + "id": "YmVlOGE2OGU1Y2Q3NDg0MmIwNDMzZDY0NzkyNTI1OGI" + }, + "challenge": "TrdhAt14vnF2YmjRdQ0LFN4mx2DXKQlSaTTKr-Q3u7s", + "pubKeyCredParams": [ + { + "type": "public-key", + "alg": -7 + }, + { + "type": "public-key", + "alg": -35 + }, + { + "type": "public-key", + "alg": -36 + }, + { + "type": "public-key", + "alg": -257 + }, + { + "type": "public-key", + "alg": -258 + }, + { + "type": "public-key", + "alg": -259 + }, + { + "type": "public-key", + "alg": -37 + }, + { + "type": "public-key", + "alg": -38 + }, + { + "type": "public-key", + "alg": -39 + }, + { + "type": "public-key", + "alg": -8 + } + ], + "timeout": 60000, + "authenticatorSelection": { + "requireResidentKey": false, + "userVerification": "preferred" + } + } + } + } +} diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json new file mode 100644 index 00000000..839ac47a --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json @@ -0,0 +1,59 @@ +{ + "name": " Passkey MFA register finish", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/login/2fa/register/passkey/finish", + "method": "Post", + "getparams": { + "apikey*": "@apikey@", + "secondfactorauthenticationtoken*":"" + }, + "postparams":{ + "PasskeyCredential": { + "id": "AfKIEzVAQBzIRecT9WqHXEnVT1ApUhV4maQ4NB7GnQbIRQwngbmSMm9kguh9QNhAS-fTeIksEsk2zj8QGEApduQ", + "rawId": "AfKIEzVAQBzIRecT9WqHXEnVT1ApUhV4maQ4NB7GnQbIRQwngbmSMm9kguh9QNhAS-fTeIksEsk2zj8QGEApduQ", + "type": "public-key", + "response": { + "attestationObject": "o2NmbXRkbm9uZWdhdHRTdG10oGhhdXRoRGF0YVjFSZYN5YgOjGh0NBcPZHZgW4_krrmihjLHmVzzuoMdl2NFAAAAAAAAAAAAAAAAAAAAAAAAAAAAQQHyiBM1QEAcyEXnE_Vqh1xJ1U9QKVIVeJmkODQexp0GyEUMJ4G5kjJvZILofUDYQEvn03iJLBLJNs4_EBhAKXbkpQECAyYgASFYIF7GKL_bIEUpfuFUJHRdzxSvKO8Ty28qSs_Xf6QIMB9bIlggD0uYcBoYeucMs7VmAYFfMWmshQ_fVk25i1csmiZluQU", + "clientDataJSON": "eyJ0eXBlIjoid2ViYXV0aG4uY3JlYXRlIiwiY2hhbGxlbmdlIjoidnhDNUVCTzlFWFZTVml5dGl2Y2VmT2dMUmxpaTltOWhVVC11M3NzZ2dhUSIsIm9yaWdpbiI6Imh0dHA6Ly9sb2NhbGhvc3Q6ODA4MCIsImNyb3NzT3JpZ2luIjpmYWxzZX0" + } + } + }, + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to finish the MFA passkey registration flow.", + "parameters":{ + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + }, + { + "name": "secondfactorauthenticationtoken", + "is_required": true, + "description": "SecondFactorAuthenticationToken from the response of 2FA authentication API" + } + ] +}, + "outputFormat": + { + "Profile": { + "Identities": null, + "Email": [ + { + "Type": "Primary", + "Value": "pushauth@mail7.io" + } + ], + "PasskeyLogin": { + "ProgressiveEnrollmentDate": "2024-08-09T05:12:50.704Z", + "ProgressiveFlag": false, + "LocalEnrollmentFlag": false + } + }, + "access_token": "66b5e224-a25b-4ec1-8771-5ed70b32020a", + "refresh_token": "66b5e224-1203-400f-893a-8bf00afb0201", + "expires_in": "2024-08-10T10:32:20.895Z" + }} \ No newline at end of file diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json new file mode 100644 index 00000000..9a6bafce --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json @@ -0,0 +1,47 @@ +{ + "name": "Passkey MFA verify begin", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/login/2fa/passkey/begin", + "method": "GET", + "getparams": { + "apikey*": "@apikey@", + "secondfactorauthenticationtoken*":"" + }, + "postparams":"", + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to begin the MFA passkey verification flow. In the query parameter, we will pass the second-factor token", + "parameters": { + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + }, + { + "name": "secondfactorauthenticationtoken", + "is_required": true, + "description": "SecondFactorAuthenticationToken from the response of 2FA authentication API" + } + ] + }, + "outputFormat": + { + "LoginBeginCredential": { + "publicKey": { + "challenge": "G2xndJdL-QIPY-dqRoGqIqRF0AUvdmpB_Xzwesbzgto", + "timeout": 60000, + "rpId": "localhost", + "allowCredentials": [ + { + "type": "public-key", + "id": "IiUHeDqz9v1IGc6SeLVXAUiMDfA-ZYKZUhWOC1WDfESyjHaK9XBhB_18PeaoGHaAbi4V6p653vfvgshKvjYetg" + } + ], + "userVerification": "preferred" + } + } + } +} \ No newline at end of file diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json new file mode 100644 index 00000000..6068f287 --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json @@ -0,0 +1,62 @@ +{ + "name": "Passkey MFA verify finish", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/login/2fa/passkey/finish", + "method": "Post", + "getparams": { + "apikey*": "@apikey@", + "secondfactorauthenticationtoken*":"" + }, +"postparams":{ + "PasskeyCredential": { + "id": "IiUHeDqz9v1IGc6SeLVXAUiMDfA-ZYKZUhWOC1WDfESyjHaK9XBhB_18PeaoGHaAbi4V6p653vfvgshKvjYetg", + "rawId": "IiUHeDqz9v1IGc6SeLVXAUiMDfA-ZYKZUhWOC1WDfESyjHaK9XBhB_18PeaoGHaAbi4V6p653vfvgshKvjYetg", + "type": "public-key", + "authenticatorAttachment": "cross-platform", + "response": { + "authenticatorData": "SZYN5YgOjGh0NBcPZHZgW4_krrmihjLHmVzzuoMdl2MFAAAAAw", + "clientDataJSON": "eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoidk53VExwc0lUT2ZCWVEwS1c4ZURkNTRGT01PdmhjazZuLV85amN1MFBqOCIsIm9yaWdpbiI6Imh0dHA6Ly9sb2NhbGhvc3Q6ODA4MCIsImNyb3NzT3JpZ2luIjpmYWxzZX0", + "signature": "MEQCICVYd4CBBsGs5pF3oNdiro3WUnA2uUPQpUN8WlWz7nYgAiAE0XqF0U86ciFLARH5OzDPP3NTs83Hdx3jbstSr86O_A", + "userHandle": "" + } + } + }, +"headers":{ + "content-Type":"application/json" +}, +"response":"json", +"description": "This API is used to finish the MFA passkey verification flow. In the query parameter, we will pass the second-factor token", +"parameters":{ + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + }, + { + "name": "secondfactorauthenticationtoken", + "is_required": true, + "description": "SecondFactorAuthenticationToken from the response of 2FA authentication API" + } +] +}, +"outputFormat": +{ + "Profile": { + "Identities": null, + "Email": [ + { + "Type": "Primary", + "Value": "example@mail.com" + } + ], + "PasskeyLogin": { + "ProgressiveEnrollmentDate": "2024-08-09T05:12:50.704Z", + "ProgressiveFlag": false, + "LocalEnrollmentFlag": false + } + }, + "access_token": "66b5e224-a25b-4ec1-8771-5ed70b32020a", + "refresh_token": "66b5e224-1203-400f-893a-8bf00afb0201", + "expires_in": "2024-08-10T10:32:20.895Z" +}} \ No newline at end of file diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json new file mode 100644 index 00000000..19722682 --- /dev/null +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json @@ -0,0 +1,33 @@ +{ + "name": "Reset MFA Passkey Authenticator", + "domain": "https://api.loginradius.com", + "path": "/identity/v2/auth/account/2fa/authenticator/passkey", + "method": "DELETE", + "getparams": { + "apikey*": "@apikey@" + }, + "postparams":"", + "headers":{ + "content-Type":"application/json" + }, + "response":"json", + "description": "This API is used to reset the Passkey Authenticator settings for an MFA-enabled user.", + "parameters": { + "Get Params": [ + { + "name": "apikey", + "is_required": true, + "description": "LoginRadius API Key" + }], + "Headers Parameters":[ { + "name": "Authorization", + "is_required": true, + "description": "Bearer <ACCESS_TOKEN> (User's access_token)" + } + ] + }, + "outputFormat": + { + "IsDeleted": true + } +} \ No newline at end of file diff --git a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview new file mode 100644 index 00000000..7c09f427 --- /dev/null +++ b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview @@ -0,0 +1,43 @@ +# MFA Passkey API Overview + +The **MFA Passkey APIs** enable multi-factor authentication through passkeys, providing an additional layer of security for user authentication. These APIs support the registration, verification, and reset of passkeys for MFA purposes. The following are the key API functions available in this suite: + +## API Endpoints + +1. **Registering a Passkey for MFA**: + - [Account Passkey MFA Register Begin](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) + - [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/) + - These APIs allow users to initiate and complete the registration of a passkey as an MFA method. + +2. **Verifying Passkey for MFA**: + - [Passkey MFA Verify Begin](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) + - [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) + - These APIs are used to start and finish the verification process, where users authenticate with their registered passkey as a secondary authentication factor. + +3. **Resetting Passkey Authenticator for MFA**: + - [Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/) + - [Account Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) + - These APIs help reset the passkey authenticator, enabling users to re-register a passkey if needed. + +## Sample Use Cases + +1. **User Onboarding with MFA Passkey Registration**: + - During the user onboarding process, a company might require the user to register a passkey as an MFA option for enhanced security. + - The process begins with [Account Passkey MFA Register Begin](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) to initiate passkey registration and completes with [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/). + +2. **Secure Login with Passkey Verification**: + - When a user logs in, the system can trigger an MFA challenge using passkeys. + - The [Passkey MFA Verify Begin](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) API starts the verification, and [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) completes the authentication once the user provides the correct passkey. + +3. **Passkey Reset Due to Device Change**: + - If a user changes their device or loses access to their registered passkey, they may need to reset their MFA passkey authenticator. + - The [Account Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) API allows them to remove the existing passkey setup and re-register a new one. + +## Benefits of Using Passkeys + +- Each API is intended to enhance security while maintaining a seamless user experience. +- Integrating these APIs can reduce unauthorized access risks by implementing a stronger, possession-based second factor. +- Enhanced Security: Resistance to phishing attacks and stronger authentication. +- Improved User Experience: Faster logins without the hassle of remembering passwords. +- Reduced Risk of Credential Theft: Elimination of password-related risks. +- Future-Proof Authentication: Ready for evolving security standards and technologies. \ No newline at end of file diff --git a/database/apidocs/menus/v2.json b/database/apidocs/menus/v2.json index f2f3c171..1c3da6ab 100644 --- a/database/apidocs/menus/v2.json +++ b/database/apidocs/menus/v2.json @@ -1449,7 +1449,54 @@ "title": "Reset MFA Duo Security Authenticator Settings By UID", "type": "DELETE" } - ] + ], + "Passkey": [ + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/overview/", + "title": "Overview", + "type": "DOC" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/", + "title": "Account Passkey MFA Register Begin", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin/", + "title": "Passkey MFA Register Begin", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/", + "title": "Passkey MFA Verify Begin", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/", + "title": "Passkey MFA Verify Finish", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish/", + "title": "Passkey MFA Register Finish", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/", + "title": "Account Passkey MFA Register Finish", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/", + "title": "Reset MFA Passkey Authenticator", + "type": "DELETE" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/", + "title": "Account Reset MFA Passkey Authenticator", + "type": "DELETE" + } +] }, "PIN Authentication": [ { From 46902ff98ea9c0ee5606afa7fd1d8c13aa423d0c Mon Sep 17 00:00:00 2001 From: Nikhil Sahu <155785295+nikhilsahugithub@users.noreply.github.com> Date: Thu, 14 Nov 2024 05:22:00 +0530 Subject: [PATCH 2/7] Update overview --- .../passkey/overview | 20 +++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview index 7c09f427..01ce5698 100644 --- a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview +++ b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview @@ -5,33 +5,33 @@ The **MFA Passkey APIs** enable multi-factor authentication through passkeys, pr ## API Endpoints 1. **Registering a Passkey for MFA**: - - [Account Passkey MFA Register Begin](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) - - [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/) + - [Account Passkey MFA Register Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) + - [Account Passkey MFA Register Finish](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/) - These APIs allow users to initiate and complete the registration of a passkey as an MFA method. 2. **Verifying Passkey for MFA**: - - [Passkey MFA Verify Begin](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) - - [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) + - [Passkey MFA Verify Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) + - [Passkey MFA Verify Finish](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) - These APIs are used to start and finish the verification process, where users authenticate with their registered passkey as a secondary authentication factor. 3. **Resetting Passkey Authenticator for MFA**: - - [Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/) - - [Account Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) + - [Reset MFA Passkey Authenticator](/api/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/) + - [Account Reset MFA Passkey Authenticator](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) - These APIs help reset the passkey authenticator, enabling users to re-register a passkey if needed. ## Sample Use Cases 1. **User Onboarding with MFA Passkey Registration**: - During the user onboarding process, a company might require the user to register a passkey as an MFA option for enhanced security. - - The process begins with [Account Passkey MFA Register Begin](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) to initiate passkey registration and completes with [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/). + - The process begins with [Account Passkey MFA Register Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) to initiate passkey registration and completes with [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/). 2. **Secure Login with Passkey Verification**: - When a user logs in, the system can trigger an MFA challenge using passkeys. - - The [Passkey MFA Verify Begin](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) API starts the verification, and [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) completes the authentication once the user provides the correct passkey. + - The [Passkey MFA Verify Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) API starts the verification, and [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) completes the authentication once the user provides the correct passkey. 3. **Passkey Reset Due to Device Change**: - If a user changes their device or loses access to their registered passkey, they may need to reset their MFA passkey authenticator. - - The [Account Reset MFA Passkey Authenticator](v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) API allows them to remove the existing passkey setup and re-register a new one. + - The [Account Reset MFA Passkey Authenticator](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/) API allows them to remove the existing passkey setup and re-register a new one. ## Benefits of Using Passkeys @@ -40,4 +40,4 @@ The **MFA Passkey APIs** enable multi-factor authentication through passkeys, pr - Enhanced Security: Resistance to phishing attacks and stronger authentication. - Improved User Experience: Faster logins without the hassle of remembering passwords. - Reduced Risk of Credential Theft: Elimination of password-related risks. -- Future-Proof Authentication: Ready for evolving security standards and technologies. \ No newline at end of file +- Future-Proof Authentication: Ready for evolving security standards and technologies. From d944fdf98eb0c480bfdc148817f9fe0242ab4b25 Mon Sep 17 00:00:00 2001 From: Nikhil Sahu <155785295+nikhilsahugithub@users.noreply.github.com> Date: Thu, 14 Nov 2024 05:25:29 +0530 Subject: [PATCH 3/7] Update overview --- .../multi-factor-authentication/passkey/overview | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview index 01ce5698..677ca12c 100644 --- a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview +++ b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview @@ -23,11 +23,11 @@ The **MFA Passkey APIs** enable multi-factor authentication through passkeys, pr 1. **User Onboarding with MFA Passkey Registration**: - During the user onboarding process, a company might require the user to register a passkey as an MFA option for enhanced security. - - The process begins with [Account Passkey MFA Register Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) to initiate passkey registration and completes with [Account Passkey MFA Register Finish](v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/). + - The process begins with [Account Passkey MFA Register Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) to initiate passkey registration and completes with [Account Passkey MFA Register Finish](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/). 2. **Secure Login with Passkey Verification**: - When a user logs in, the system can trigger an MFA challenge using passkeys. - - The [Passkey MFA Verify Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) API starts the verification, and [Passkey MFA Verify Finish](v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) completes the authentication once the user provides the correct passkey. + - The [Passkey MFA Verify Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/) API starts the verification, and [Passkey MFA Verify Finish](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/) completes the authentication once the user provides the correct passkey. 3. **Passkey Reset Due to Device Change**: - If a user changes their device or loses access to their registered passkey, they may need to reset their MFA passkey authenticator. From fefb443b95153450f1546cf4e6250cd844b44d2b Mon Sep 17 00:00:00 2001 From: "AzureAD\\NikhilSahu" Date: Thu, 14 Nov 2024 07:12:20 +0530 Subject: [PATCH 4/7] Updated Data points DOC --- .../data-points/data-points.md | 21 +++++++++++-------- 1 file changed, 12 insertions(+), 9 deletions(-) diff --git a/database/apidocs/docs/v2/getting-started/data-points/data-points.md b/database/apidocs/docs/v2/getting-started/data-points/data-points.md index d556a3f7..5d1b262b 100644 --- a/database/apidocs/docs/v2/getting-started/data-points/data-points.md +++ b/database/apidocs/docs/v2/getting-started/data-points/data-points.md @@ -1,25 +1,28 @@ -#Data Points +# Data Points ---------- -LoginRadius normalizes all data points gathered through traditional forms or by different social providers. Even so, it is always recommended to review which data points are made available to you with each social provider you have configured for your site or app's social login, as there are unique restrictions imposed by each. +LoginRadius normalizes all data points gathered through traditional forms or by different social providers. Even so, it is always recommended to review which data points are made available to you with each social provider you have configured for your site or app's social login, as there are unique restrictions imposed by each. An updated chart of all retrievable data points broken down by each provider can be found [here](/api/v2/getting-started/data-points/social-provider-data-fields/). -##Data Structure +## Data Structure + The LoginRadius User Registration system utilizes two identifiers in order to uniquely identify your users: +1. **Account ID (UID)**: The UID is the unique identifier for each user **account**. It may have multiple Profile IDs (ID) attached to it via the **Identities** profile field (see below). -1. Account ID (UID): The UID is the unique identifier for each user **account**. It may have multiple Profile IDs (ID) attached to it via the **Identities** profile field(see below). +2. **Profile ID (ID)**: The ID is the unique identifier for each **profile** attached to a LoginRadius UID. There will be a unique ID for each profile (i.e., "Facebook," "Twitter," "Email," etc.) associated with a given UID. -2. Profile ID (ID): The ID is the unique identifier for each **profile** attached to a LoginRadius UID. There will be a unique ID for each profile (i.e. "Facebook", "Twitter", "Email", etc.) associated with a given UID. +When a user first registers with a given property for the first time, a UID (or **account**) will be created for that user, along with an ID (or **profile**) that contains all data gathered through whichever method they used to register (i.e., email and password, Facebook, Twitter, etc.). If this user returns and logs in via a new social provider, or if they initially registered with a social provider and now choose to utilize the email and password option, a second ID will be added to the existing UID (as long as the email associated with both profiles is the same). -When a user first registers with a given property for the first time, a UID (or **account**) will be created for that user, along with an ID (or **profile**) that contains all data gathered through whichever method they used to register (i.e. email and password, Facebook, Twitter, etc.). If this user returns and logs in via a new social provider, or if they initially registered with a social provider and now choose to utilize the email and password option, a second ID will be added to the existing UID (as long as the email associated with both profiles is the same). +Whenever a user logs in with a social provider account, such as Facebook or Apple, LoginRadius creates a social profile in the database. Additionally, if an RAAS/Email profile (primary account) does not already exist, one will be created automatically. -New social accounts can also be added to this UID using the [Account Linking API](/api/v2/customer-identity-api/authentication/auth-link-social-identities) and including the Profile ID (ID) for the social provider that you are trying to link. +New social accounts can also be added to this UID using the [Account Linking API](/api/v2/customer-identity-api/authentication/auth-link-social-identities) and including the Profile ID (ID) for the social provider that you are trying to link. -During the initial registration an Email profile is always created(even when registering via Social Provider) This profile contains the **Identities** parameter which includes the attached Social Profiles. The Email profile is also the profile that is updated when using the various user management API calls(ie. Update, Change password, etc) +During the initial registration, an Email profile is always created (even when registering via Social Provider). This profile contains the **Identities** parameter, which includes the attached Social Profiles. The Email profile is also the profile that is updated when using the various user management API calls (e.g., Update, Change password, etc.). -**Custom objects** are dynamic JSON objects that can store advanced custom user data and are identified with an Object ID that is provided by LoginRadius. All data pertaining to a given Account within that object can be identified by the UID. +**Custom objects** are dynamic JSON objects that can store advanced custom user data and are identified with an Object ID that is provided by LoginRadius. All data pertaining to a given Account within that object can be identified by the UID. ![enter image description here](https://apidocs.lrcontent.com/images/loginradius-raas-APIV2-data-structure---Page-1_29726594c260a25b860.05743941.png "") + From 705c19a980ed3c6d5b883ecc83ac2a26927bcf17 Mon Sep 17 00:00:00 2001 From: "AzureAD\\NikhilSahu" Date: Thu, 14 Nov 2024 22:34:50 +0530 Subject: [PATCH 5/7] API fix --- .../passkey/account_passkey_mfa_register_begin.json | 2 +- .../passkey/account_passkey_mfa_register_finish.json | 2 +- .../passkey/account_reset_mfa_passkey_authenticator.json | 2 +- .../passkey/passkey-mfa-register-begin.json | 2 +- .../passkey/passkey_mfa_register_finish.json | 2 +- .../passkey/passkey_mfa_verify_begin.json | 2 +- .../passkey/passkey_mfa_verify_finish.json | 2 +- .../passkey/{overview => overview.md} | 2 +- 8 files changed, 8 insertions(+), 8 deletions(-) rename database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/{overview => overview.md} (98%) diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json index a43b9a0a..a255ad7c 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json @@ -1,5 +1,5 @@ { - "name": "Passkey MFA register begin", + "name": "Account Passkey MFA Register Begin", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/account/2fa/register/passkey/begin", "method": "GET", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json index 7c9b1b84..d3546feb 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json @@ -1,5 +1,5 @@ { - "name": "Account: Passkey MFA register finish", + "name": "Account Passkey MFA Register Finish", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/account/2fa/register/passkey/finish", "method": "Post", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json index 47b513a5..d8eb710e 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json @@ -1,5 +1,5 @@ { - "name": "Account MFA Passkey Authenticator", + "name": "Account Reset MFA Passkey Authenticator", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/account/2fa/authenticator/passkey", "method": "DELETE", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json index 6fb1d2a2..e29b9a76 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json @@ -1,5 +1,5 @@ { - "name": "Passkey MFA register begin", + "name": "Passkey MFA Register Begin", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/login/2fa/register/passkey/begin", "method": "GET", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json index 839ac47a..ab962188 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json @@ -1,5 +1,5 @@ { - "name": " Passkey MFA register finish", + "name": "Passkey MFA Register Finish", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/login/2fa/register/passkey/finish", "method": "Post", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json index 9a6bafce..dc42b403 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json @@ -1,5 +1,5 @@ { - "name": "Passkey MFA verify begin", + "name": "Passkey MFA Verify Begin", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/login/2fa/passkey/begin", "method": "GET", diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json index 6068f287..3df1665d 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json @@ -1,5 +1,5 @@ { - "name": "Passkey MFA verify finish", + "name": "Passkey MFA Verify Finish", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/login/2fa/passkey/finish", "method": "Post", diff --git a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md similarity index 98% rename from database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview rename to database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md index 677ca12c..99be6156 100644 --- a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview +++ b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md @@ -1,6 +1,6 @@ # MFA Passkey API Overview -The **MFA Passkey APIs** enable multi-factor authentication through passkeys, providing an additional layer of security for user authentication. These APIs support the registration, verification, and reset of passkeys for MFA purposes. The following are the key API functions available in this suite: +The **MFA Passkey APIs** enable multi-factor authentication through passkeys, providing an additional layer of security for user authentication. These APIs support the registration, verification, and reset of passkeys for MFA purposes. The following are the key API functions available in this suite. ## API Endpoints From 9625ddea88c785f9ed920199e07fb98c9baf87d3 Mon Sep 17 00:00:00 2001 From: "AzureAD\\NikhilSahu" Date: Thu, 14 Nov 2024 23:20:24 +0530 Subject: [PATCH 6/7] API fix --- ...ister_begin.json => account-passkey-mfa-register-begin.json} | 2 +- ...ter_finish.json => account-passkey-mfa-register-finish.json} | 2 +- ...icator.json => account-reset-mfa-passkey-authenticator.json} | 2 +- ...fa_register_finish.json => passkey-mfa-register-finish.json} | 2 +- ...skey_mfa_verify_begin.json => passkey-mfa-verify-begin.json} | 2 +- ...ey_mfa_verify_finish.json => passkey-mfa-verify-finish.json} | 2 +- ..._authenticator.json => reset-mfa-passkey-authenticator.json} | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{account_passkey_mfa_register_begin.json => account-passkey-mfa-register-begin.json} (97%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{account_passkey_mfa_register_finish.json => account-passkey-mfa-register-finish.json} (99%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{account_reset_mfa_passkey_authenticator.json => account-reset-mfa-passkey-authenticator.json} (98%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{passkey_mfa_register_finish.json => passkey-mfa-register-finish.json} (97%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{passkey_mfa_verify_begin.json => passkey-mfa-verify-begin.json} (99%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{passkey_mfa_verify_finish.json => passkey-mfa-verify-finish.json} (98%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{reset_mfa_passkey_authenticator.json => reset-mfa-passkey-authenticator.json} (97%) diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json similarity index 97% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json index a255ad7c..3ae12a16 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json @@ -35,7 +35,7 @@ "id": "localhost" }, "user": { - "name": "f04d624989314945a95*************", + "name": "f04d624989314945a95************8*", "displayName": "f04d62498931494***************", "id": "ZjA0ZDYyNDk4OTMxNDk0NWE5NTBjNmE***********" }, diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json similarity index 99% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json index d3546feb..60300575 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_passkey_mfa_register_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json @@ -100,7 +100,7 @@ "PhoneNumbers": [ { "PhoneType": "Mobile", - "PhoneNumber": "***********" + "PhoneNumber": "************" } ], "IMAccounts": [ diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json similarity index 98% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json index d8eb710e..b61f0d2a 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account_reset_mfa_passkey_authenticator.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json @@ -14,7 +14,7 @@ "Authorization":"Bearer " }, "response":"json", -"description": "This API is used to list user passkeys with managed API", +"description": "This API is used to list user passkeys with managed API ", "parameters": { "Get Params": [ { diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish.json similarity index 97% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish.json index ab962188..8c7dd72b 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_register_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish.json @@ -44,7 +44,7 @@ "Email": [ { "Type": "Primary", - "Value": "pushauth@mail7.io" + "Value": "pushauth@mail.com" } ], "PasskeyLogin": { diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin.json similarity index 99% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin.json index dc42b403..25f048e5 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin.json @@ -31,7 +31,7 @@ { "LoginBeginCredential": { "publicKey": { - "challenge": "G2xndJdL-QIPY-dqRoGqIqRF0AUvdmpB_Xzwesbzgto", + "challenge": "G2xndJdL-QIPY-dqRoGqIqRF0AUvdmpB_XZwesbzgto", "timeout": 60000, "rpId": "localhost", "allowCredentials": [ diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish.json similarity index 98% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish.json index 3df1665d..76aa1d42 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey_mfa_verify_finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish.json @@ -17,7 +17,7 @@ "authenticatorData": "SZYN5YgOjGh0NBcPZHZgW4_krrmihjLHmVzzuoMdl2MFAAAAAw", "clientDataJSON": "eyJ0eXBlIjoid2ViYXV0aG4uZ2V0IiwiY2hhbGxlbmdlIjoidk53VExwc0lUT2ZCWVEwS1c4ZURkNTRGT01PdmhjazZuLV85amN1MFBqOCIsIm9yaWdpbiI6Imh0dHA6Ly9sb2NhbGhvc3Q6ODA4MCIsImNyb3NzT3JpZ2luIjpmYWxzZX0", "signature": "MEQCICVYd4CBBsGs5pF3oNdiro3WUnA2uUPQpUN8WlWz7nYgAiAE0XqF0U86ciFLARH5OzDPP3NTs83Hdx3jbstSr86O_A", - "userHandle": "" + "userHandle": " " } } }, diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json similarity index 97% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json index 19722682..fea3d4c6 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset_mfa_passkey_authenticator.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json @@ -28,6 +28,6 @@ }, "outputFormat": { - "IsDeleted": true + "IsDeleted": true } } \ No newline at end of file From a89b4ae2ef66f8947176f81101ecc9c658d4f86a Mon Sep 17 00:00:00 2001 From: vaibhavLR Date: Mon, 18 Nov 2024 14:27:52 +0530 Subject: [PATCH 7/7] Fixing mutliple error doc3001 --- ...count-reset-mfa-passkey-authenticator.json | 5 +- ...fa-register-begin-using-access-token.json} | 13 +-- .../passkey/passkey-mfa-register-begin.json | 13 ++- ...a-register-finish-using-access-token.json} | 8 +- .../reset-mfa-passkey-authenticator.json | 3 +- .../passkey/overview.md | 4 +- database/apidocs/menus/v2.json | 96 +++++++++---------- 7 files changed, 73 insertions(+), 69 deletions(-) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{account-passkey-mfa-register-begin.json => passkey-mfa-register-begin-using-access-token.json} (92%) rename database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/{account-passkey-mfa-register-finish.json => passkey-mfa-register-finish-using-access-token.json} (94%) diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json index b61f0d2a..f3c6d456 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator.json @@ -10,11 +10,10 @@ }, "postparams":"", "headers":{ - "content-Type":"application/json", - "Authorization":"Bearer " + "content-Type":"application/json" }, "response":"json", -"description": "This API is used to list user passkeys with managed API ", +"description": "This API is used to reset the Passkey Authenticator for an MFA-enabled user. ", "parameters": { "Get Params": [ { diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin-using-access-token.json similarity index 92% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin-using-access-token.json index 3ae12a16..a2e8f7df 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin-using-access-token.json @@ -1,11 +1,11 @@ { - "name": "Account Passkey MFA Register Begin", + "name": "Passkey MFA Register Begin using access token", "domain": "https://api.loginradius.com", - "path": "/identity/v2/auth/account/2fa/register/passkey/begin", + "path": "/identity/v2/auth/login/2fa/register/passkey/begin", "method": "GET", "getparams": { "apikey*": "@apikey@", - "secondfactorauthenticationtoken*":"" + "Authorization":"Bearer " }, "postparams":"", "headers":{ @@ -19,12 +19,13 @@ "name": "apikey", "is_required": true, "description": "LoginRadius API Key" - }], - "Headers Parameters": [{ + }, + { "name": "Authorization", "is_required": true, "description": "Bearer <ACCESS_TOKEN> (User's access_token)" - }] + } + ] }, "outputFormat": { diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json index e29b9a76..1e9e357e 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin.json @@ -5,7 +5,7 @@ "method": "GET", "getparams": { "apikey*": "@apikey@", - "Authorization":"Bearer " + "secondfactorauthenticationtoken*":"" }, "postparams":"", "headers":{ @@ -18,12 +18,11 @@ "name": "apikey", "is_required": true, "description": "LoginRadius API Key" - } ], - "Headers Parameters": [{ - "name": "Authorization", - "is_required": true, - "description": "Bearer <ACCESS_TOKEN> (User's access_token)" - }] + }, { + "name": "secondfactorauthenticationtoken", + "is_required": true, + "description": "SecondFactorAuthenticationToken from the response of 2FA authentication API" + }] }, "outputFormat": { diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish-using-access-token.json similarity index 94% rename from database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json rename to database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish-using-access-token.json index 60300575..74788b27 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish-using-access-token.json @@ -1,5 +1,5 @@ { - "name": "Account Passkey MFA Register Finish", + "name": "Passkey MFA Register Finish using access token", "domain": "https://api.loginradius.com", "path": "/identity/v2/auth/account/2fa/register/passkey/finish", "method": "Post", @@ -220,13 +220,17 @@ "content-Type":"application/json" }, "response":"json", - "description": "This API is used to register a mobile device app for Push MFA, It will be used when Push MFA is enabled on the LoginRadius account.", + "description": "This API is used to finish the MFA passkey registration in the account using the Access token.", "parameters":{ "Get Params": [ { "name": "apikey", "is_required": true, "description": "LoginRadius API Key" + },{ + "name": "access_token", + "is_required": true, + "description": "User's access token" } ] }, diff --git a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json index fea3d4c6..31dcbc0f 100644 --- a/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json +++ b/database/apidocs/apis/v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator.json @@ -8,7 +8,8 @@ }, "postparams":"", "headers":{ - "content-Type":"application/json" + "content-Type":"application/json", + "Authorization":"Bearer " }, "response":"json", "description": "This API is used to reset the Passkey Authenticator settings for an MFA-enabled user.", diff --git a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md index 99be6156..168fd0fd 100644 --- a/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md +++ b/database/apidocs/docs/v2/customer-identity-api/multi-factor-authentication/passkey/overview.md @@ -5,8 +5,8 @@ The **MFA Passkey APIs** enable multi-factor authentication through passkeys, pr ## API Endpoints 1. **Registering a Passkey for MFA**: - - [Account Passkey MFA Register Begin](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/) - - [Account Passkey MFA Register Finish](/api/v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/) + - [Passkey MFA Register Begin using Access Token](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin-using-access-token/) + - [Passkey MFA Register Finish using Access Token](/api/v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish-using-access-token/) - These APIs allow users to initiate and complete the registration of a passkey as an MFA method. 2. **Verifying Passkey for MFA**: diff --git a/database/apidocs/menus/v2.json b/database/apidocs/menus/v2.json index 1c3da6ab..ea8d0df6 100644 --- a/database/apidocs/menus/v2.json +++ b/database/apidocs/menus/v2.json @@ -1386,6 +1386,53 @@ "type": "DELETE" } ], + "Passkey": [ + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/overview/", + "title": "Overview", + "type": "DOC" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin-using-access-token/", + "title": "Passkey MFA Register Begin using Access Token", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin/", + "title": "Passkey MFA Register Begin", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/", + "title": "Passkey MFA Verify Begin", + "type": "GET" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/", + "title": "Passkey MFA Verify Finish", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish/", + "title": "Passkey MFA Register Finish", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish-using-access-token/", + "title": "Passkey MFA Register Finish using access token", + "type": "POST" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/", + "title": "Reset MFA Passkey Authenticator", + "type": "DELETE" + }, + { + "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/", + "title": "Account Reset MFA Passkey Authenticator", + "type": "DELETE" + } +], "Backup Codes": [ { "url": "v2/customer-identity-api/multi-factor-authentication/backup-codes/overview/", @@ -1449,54 +1496,7 @@ "title": "Reset MFA Duo Security Authenticator Settings By UID", "type": "DELETE" } - ], - "Passkey": [ - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/overview/", - "title": "Overview", - "type": "DOC" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-begin/", - "title": "Account Passkey MFA Register Begin", - "type": "GET" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-begin/", - "title": "Passkey MFA Register Begin", - "type": "GET" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-begin/", - "title": "Passkey MFA Verify Begin", - "type": "GET" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-verify-finish/", - "title": "Passkey MFA Verify Finish", - "type": "POST" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/passkey-mfa-register-finish/", - "title": "Passkey MFA Register Finish", - "type": "POST" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-passkey-mfa-register-finish/", - "title": "Account Passkey MFA Register Finish", - "type": "POST" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/reset-mfa-passkey-authenticator/", - "title": "Reset MFA Passkey Authenticator", - "type": "DELETE" - }, - { - "url": "v2/customer-identity-api/multi-factor-authentication/passkey/account-reset-mfa-passkey-authenticator/", - "title": "Account Reset MFA Passkey Authenticator", - "type": "DELETE" - } -] + ] }, "PIN Authentication": [ {