The MfaTotpEnrollStartResponseDto object

Example

{
  "enrollment_token": "string",
  "otpauth_uri": "otpauth://totp/MFA:alice%40acme.com?secret=JBSWY3DPEHPK3PXP&issuer=MFA",
  "manual_entry_key": "JBSWY3DPEHPK3PXP"
}

Properties

enrollment_tokenstring*
Opaque short-lived (5 min) sealed token carrying the provisional TOTP secret. Must be returned to the verify endpoint exactly.
otpauth_uristring*
`otpauth://totp/...` URI for the authenticator app to import. Render as a QR code on the client.
manual_entry_keystring*
Human-readable fallback for users who can't scan the QR. Base32-encoded secret string.