Appearance
Confirm TOTP setup
POST
/admin/auth/totp-confirm
Подтверждение настройки 2FA кодом из authenticator.
Требует предварительного вызова /admin/auth/totp-setup.
Authorizations
sessionCookie
PHP session cookie (HTTP-only, Secure, SameSite=Lax)
Type
API Key (cookie: PARTIZAP_SESSION)
csrfToken
CSRF token from CSRF_TOKEN cookie. Required on POST/PUT/PATCH/DELETE for
endpoints declaring csrfToken in their security block. Unauthenticated
session-establishment endpoints (login, register, forgot-password,
reset-password, validate-reset-token, admin login, admin TOTP verify) are
exempt — they declare security: [] and accept POST without a CSRF token.
Type
API Key (header: X-CSRF-TOKEN)
Request Body
application/json
JSON "code": "string"
{
}
Responses
TOTP enabled
application/json
JSON "data": { "totp_enabled": true }
{
}