Skip to main content
POST
/
me
/
authenticator
/
attempt-verification
Verify TOTP authenticator
curl --request POST \
  --url https://api.wacht.dev/me/authenticator/attempt-verification \
  --header 'Content-Type: application/x-www-form-urlencoded' \
  --cookie session_id= \
  --data 'authenticator_id=<string>' \
  --data 'codes=<string>'
{
  "status": 200,
  "message": "",
  "data": {
    "id": "<string>",
    "secret": "<string>",
    "verified": true,
    "created_at": "2023-11-07T05:31:56Z"
  },
  "session": {
    "id": "123456789012345678",
    "created_at": "2023-11-07T05:31:56Z",
    "updated_at": "2023-11-07T05:31:56Z"
  },
  "errors": [
    {
      "code": "INVALID_CREDENTIALS",
      "message": "Invalid credentials. Please try again."
    }
  ]
}

Authorizations

session_id
string
cookie
required

Body

application/x-www-form-urlencoded
authenticator_id
string<uint64>
required
codes
string[]
required

Two consecutive TOTP codes

Required array length: 2 elements

Response

Authenticator verified and activated

status
integer

HTTP status code

Example:

200

message
string

Response message (empty on success)

Example:

""

data
object
session
object

Minimal session info included in every response

errors
object[] | null

Error details (null on success)