sailpoint.beta.MFAControllerApi
This API used for multifactor authentication functionality belong to gov-multi-auth service. This controller allow you to verify authentication by specified method All URIs are relative to https://sailpoint.api.identitynow.com/beta
| Method | HTTP request | Description |
|---|---|---|
| create-send-token | POST /mfa/token/send | Create and send user token |
| ping-verification-status | POST /mfa/{method}/poll | Polling MFA method by VerificationPollRequest |
| send-duo-verify-request | POST /mfa/duo-web/verify | Verifying authentication via Duo method |
| send-kba-answers | POST /mfa/kba/authenticate | Authenticate KBA provided MFA method |
| send-okta-verify-request | POST /mfa/okta-verify/verify | Verifying authentication via Okta method |
| send-token-auth-request | POST /mfa/token/authenticate | Authenticate Token provided MFA method |
create-send-token
Create and send user token This API send token request.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Body | send_token_request | SendTokenRequest | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | Token send status. | SendTokenResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.send_token_request import SendTokenRequest
from sailpoint.beta.models.send_token_response import SendTokenResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
send_token_request = '''{
"userAlias" : "will.albin",
"deliveryType" : "EMAIL_WORK"
}''' # SendTokenRequest |
try:
# Create and send user token
new_send_token_request = SendTokenRequest.from_json(send_token_request)
results = MFAControllerApi(api_client).create_send_token(send_token_request=new_send_token_request)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).create_send_token(new_send_token_request)
print("The response of MFAControllerApi->create_send_token:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->create_send_token: %s\n" % e)
ping-verification-status
Polling MFA method by VerificationPollRequest This API poll the VerificationPollRequest for the specified MFA method.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Path | method | str | True | The name of the MFA method. The currently supported method names are 'okta-verify', 'duo-web', 'kba','token', 'rsa' |
| Body | verification_poll_request | VerificationPollRequest | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | MFA VerificationPollRequest status an MFA method. | VerificationResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.verification_poll_request import VerificationPollRequest
from sailpoint.beta.models.verification_response import VerificationResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
method = 'okta-verify' # str | The name of the MFA method. The currently supported method names are 'okta-verify', 'duo-web', 'kba','token', 'rsa' # str | The name of the MFA method. The currently supported method names are 'okta-verify', 'duo-web', 'kba','token', 'rsa'
verification_poll_request = '''{
"requestId" : "089899f13a8f4da7824996191587bab9"
}''' # VerificationPollRequest |
try:
# Polling MFA method by VerificationPollRequest
new_verification_poll_request = VerificationPollRequest.from_json(verification_poll_request)
results = MFAControllerApi(api_client).ping_verification_status(method=method, verification_poll_request=new_verification_poll_request)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).ping_verification_status(method, new_verification_poll_request)
print("The response of MFAControllerApi->ping_verification_status:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->ping_verification_status: %s\n" % e)
send-duo-verify-request
Verifying authentication via Duo method This API Authenticates the user via Duo-Web MFA method.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Body | duo_verification_request | DuoVerificationRequest | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | The status of verification request. | VerificationResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.duo_verification_request import DuoVerificationRequest
from sailpoint.beta.models.verification_response import VerificationResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
duo_verification_request = '''{
"signedResponse" : "AUTH|d2lsbC5hbGJpbnxESTZNMFpHSThKQVRWTVpZN0M5VXwxNzAxMjUzMDg5|f1f5f8ced5b340f3d303b05d0efa0e43b6a8f970:APP|d2lsbC5hbGJpbnxESTZNMFpHSThKQVRWTVpZN0M5VXwxNzAxMjU2NjE5|cb44cf44353f5127edcae31b1da0355f87357db2",
"userId" : "2c9180947f0ef465017f215cbcfd004b"
}''' # DuoVerificationRequest |
try:
# Verifying authentication via Duo method
new_duo_verification_request = DuoVerificationRequest.from_json(duo_verification_request)
results = MFAControllerApi(api_client).send_duo_verify_request(duo_verification_request=new_duo_verification_request)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).send_duo_verify_request(new_duo_verification_request)
print("The response of MFAControllerApi->send_duo_verify_request:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->send_duo_verify_request: %s\n" % e)
send-kba-answers
Authenticate KBA provided MFA method This API Authenticate user in KBA MFA method.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Body | kba_answer_request_item | []KbaAnswerRequestItem | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | KBA authenticated status. | KbaAuthResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.kba_answer_request_item import KbaAnswerRequestItem
from sailpoint.beta.models.kba_auth_response import KbaAuthResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
kba_answer_request_item = '''[{id=173423, answer=822cd15d6c15aa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a0859a2fea34}, {id=c54fee53-2d63-4fc5-9259-3e93b9994135, answer=9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08}]''' # List[KbaAnswerRequestItem] |
try:
# Authenticate KBA provided MFA method
new_kba_answer_request_item = KbaAnswerRequestItem.from_json(kba_answer_request_item)
results = MFAControllerApi(api_client).send_kba_answers(kba_answer_request_item=new_kba_answer_request_item)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).send_kba_answers(new_kba_answer_request_item)
print("The response of MFAControllerApi->send_kba_answers:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->send_kba_answers: %s\n" % e)
send-okta-verify-request
Verifying authentication via Okta method This API Authenticates the user via Okta-Verify MFA method. Request requires a header called 'slpt-forwarding', and it must contain a remote IP Address of caller.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Body | okta_verification_request | OktaVerificationRequest | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | The status of verification request. | VerificationResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.okta_verification_request import OktaVerificationRequest
from sailpoint.beta.models.verification_response import VerificationResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
okta_verification_request = '''{
"userId" : "[email protected]"
}''' # OktaVerificationRequest |
try:
# Verifying authentication via Okta method
new_okta_verification_request = OktaVerificationRequest.from_json(okta_verification_request)
results = MFAControllerApi(api_client).send_okta_verify_request(okta_verification_request=new_okta_verification_request)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).send_okta_verify_request(new_okta_verification_request)
print("The response of MFAControllerApi->send_okta_verify_request:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->send_okta_verify_request: %s\n" % e)
send-token-auth-request
Authenticate Token provided MFA method This API Authenticate user in Token MFA method.
Parameters
| Param Type | Name | Data Type | Required | Description |
|---|---|---|---|---|
| Body | token_auth_request | TokenAuthRequest | True |
Return type
Responses
| Code | Description | Data Type | Response headers |
|---|---|---|---|
| 200 | Token authenticated status. | TokenAuthResponse | - |
| 400 | Client Error - Returned if the request body is invalid. | ErrorResponseDto | - |
| 401 | Unauthorized - Returned if there is no authorization header, or if the JWT token is expired. | ListAccessModelMetadataAttribute401Response | - |
| 403 | Forbidden - Returned if the user you are running as, doesn't have access to this end-point. | ErrorResponseDto | - |
| 429 | Too Many Requests - Returned in response to too many requests in a given period of time - rate limited. The Retry-After header in the response includes how long to wait before trying again. | ListAccessModelMetadataAttribute429Response | - |
| 500 | Internal Server Error - Returned if there is an unexpected error. | ErrorResponseDto | - |
HTTP request headers
- Content-Type: application/json
- Accept: application/json
Example
from sailpoint.beta.api.mfa_controller_api import MFAControllerApi
from sailpoint.beta.api_client import ApiClient
from sailpoint.beta.models.token_auth_request import TokenAuthRequest
from sailpoint.beta.models.token_auth_response import TokenAuthResponse
from sailpoint.configuration import Configuration
configuration = Configuration()
with ApiClient(configuration) as api_client:
token_auth_request = '''{
"userAlias" : "will.albin",
"deliveryType" : "EMAIL_WORK",
"token" : "12345"
}''' # TokenAuthRequest |
try:
# Authenticate Token provided MFA method
new_token_auth_request = TokenAuthRequest.from_json(token_auth_request)
results = MFAControllerApi(api_client).send_token_auth_request(token_auth_request=new_token_auth_request)
# Below is a request that includes all optional parameters
# results = MFAControllerApi(api_client).send_token_auth_request(new_token_auth_request)
print("The response of MFAControllerApi->send_token_auth_request:\n")
print(results.model_dump_json(by_alias=True, indent=4))
except Exception as e:
print("Exception when calling MFAControllerApi->send_token_auth_request: %s\n" % e)