/v1/auth/totps/verify
endpoint to verify the code’s validity and grant access. TOTP authentication is a reliable way to enhance security for critical services that require a high level of protection, without relying on passwords.
/v1/auth/users/create
endpoint. Pass any supported identifier, such as an email address, phone number, into the User create endpoint and store the returned user_id. The user_id will be used to register and authenticate with TOTP.
user_26l7dbfAY59ftejmm6m3OTf4oz1
with the user ID obtained in the previous step. This will return a JSON object containing the TOTP ID, secret, recovery codes, and QR code image in base64 format.
/v1/auth/totps/verify
endpoint and providing the user’s user_id
along with the supplied totp
.
To accommodate for network and user action delays, the /v1/auth/totps/verify
endpoint accepts TOTP codes from the previous and next 30-second periods. This provides some flexibility and reduces the risk of failed authentication attempts due to timing issues.
If you need to begin a new Streambird session or re-use an existing one, you can pass in either the session_expires_in
parameter to start a new session, or the session_token
parameter to re-use an existing one. To learn more about managing user sessions, you can consult our comprehensive guide on session management.