Authenticator app (TOTP)

All TOTP SDK methods require you to initiate an action first.

Enroll

Start enrollment for a new TOTP authenticator by generating a QR code to display to the user.

const response = await authsignal.totp.enroll();

Response

response

AuthsignalResponse<EnrollTotpResponse>

Show properties

error

string

An unstructured error description present if the SDK call encountered an error.

data

EnrollTotpResponse

Show properties

uri

string

required

A TOTP URI which can be converted into a QR code and presented to the user to scan with their authenticator app.

secret

string

required

The raw TOTP secret which can be presented to the user as a fallback option if they wish to enter a code manually instead of scanning a QR code.

Verify

Finish enrolling or re-authenticating a TOTP authenticator by verifying the code submitted by the user.

const response = await authsignal.totp.verify({ code: "123456" });

Parameters

code

string

The OTP code inputted by the user.

Response

response

AuthsignalResponse<VerifyResponse>

Show properties

error

string

An unstructured error description present if the SDK call encountered an error.

data

VerifyResponse

Show properties

isVerified

boolean

required

True if the verification was successful.

token

string

A token which can be used for server-side validation.

userAuthenticator

object

Only present on first time verification e.g. enrollment.

Show properties

userAuthenticatorId

string

required

The ID of the Authsignal user authenticator.

verificationMethod

required

createdAt

string

required

The date and time the authenticator was created in ISO 8601 format.

verifiedAt

string

required

The date and time the authenticator was first verified in ISO 8601 format.

lastVerifiedAt

string

The date and time the authenticator was last verified in ISO 8601 format.

isDefault

boolean

required

Whether the authenticator is the default authenticator for the user.

string

The email address of the authenticator. Only present for email authenticators e.g. email OTP and email magic link.

phoneNumber

string

The phone number of the authenticator. Only present for phone authenticators e.g. SMS/WhatsApp OTP.

previousSmsChannel

SMS | WHATSAPP

The previous SMS channel used to send the OTP code. Only present for phone authenticators e.g. SMS/WhatsApp OTP.

webauthnCredential

string

Only present for passkey authenticators.

Show properties

credentialId

string

required

The ID of the passkey credential.

deviceId

string

required

The device ID of the passkey credential.

name

string

The name of the passkey credential.

aaguid

string

The AAGUID of the passkey credential.

credentialBackedUp

boolean

required

Whether the passkey credential is backed up.

credentialDeviceType

'singleDevice' | 'multiDevice'

The device type of the passkey credential.

parsedUserAgent

object

The parsed user agent of the passkey credential.

Show properties

string

required

The user agent of the passkey credential.

browser

object

The browser of the passkey credential.

Show properties

name

string

The name of the browser.

version

string

The version of the browser.

major

string

The major version of the browser.

device

object

The device of the passkey credential.

Show properties

model

string

The model of the device.

type

string

The type of the device.

vendor

string

The vendor of the device.

engine

object

The engine of the passkey credential.

Show properties

name

string

The name of the engine.

version

string

The version of the engine.

object

The OS of the passkey credential.

Show properties

name

string

The name of the OS.

version

string

The version of the OS.

cpu

object

The CPU of the passkey credential.

Show properties

architecture

string

The architecture of the CPU.

verifiedAt

string

required

The date and time the passkey credential was verified in ISO 8601 format.

authenticatorAttachment

'platform' | 'cross-platform'

The authenticator attachment of the passkey credential.

aaguidMapping

string

The AAGUID mapping of the passkey credential.

Show properties

name

string

required

The name of the AAGUID mapping.

svgIconLight

string

The SVG icon of the AAGUID mapping in light mode.

svgIconDark

string

The SVG icon of the AAGUID mapping in dark mode.

failureReason

string

A structured code present if the verification failed due to user error. Possible values are: CODE_INVALID_OR_EXPIRED or MAX_ATTEMPTS_EXCEEDED.

Server

Client

Authenticator app (TOTP)

Enroll

Response

Verify

Parameters

Response

Server

Client

​Enroll

​Response

​Verify

​Parameters

​Response

Enroll

Response

Verify

Parameters

Response