Toggle the email verification factor on or off

curl --request POST \
  --url https://pria.praxislxp.com/api/user/me/mfa/email \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "enabled": true
}
'

{
  "success": true,
  "mfaEmailEnabled": true,
  "mfaEnabled": true
}

User Profile

Toggle the email verification factor on or off

Per-user switch for the email second factor. Independent of the authenticator-app (TOTP) factor — a user may run both at once. Flips mfaEmailEnabled directly (no email round-trip proof: the caller is already authenticated as that email identity), then recomputes the derived master gate mfaEnabled = email OR totp. Disabling the last remaining factor also resets the preferred factor back to email. Audits mfa.email.enabled / mfa.email.disabled.

POST

api

user

mfa

Toggle the email verification factor on or off

curl --request POST \
  --url https://pria.praxislxp.com/api/user/me/mfa/email \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "enabled": true
}
'

{
  "success": true,
  "mfaEmailEnabled": true,
  "mfaEnabled": true
}

Authorizations

Authorization

string

header

required

JWT token passed in authorization header

Body

application/json

enabled

boolean

required

true to turn the email factor on, false to turn it off.

Response

Email factor updated; derived master gate returned.

success

boolean

mfaEmailEnabled

boolean

The new state of the email factor.

mfaEnabled

boolean

Derived master gate (email OR authenticator).

Revoke a specific trusted device Begin authenticator-app (TOTP) enrollment