/admin/mfa/risk-policyFully update the MFA factor requirements for low/medium/high risk levels for the tenant. Reference: NIST SP 800-63B §5.2 (Risk-based Authentication). Requires admin permissions.
Schema: dto.UpdateRiskPolicyRequest
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
high_risk |
array of string |
Yes | |||
low_risk |
array of string |
Yes | |||
medium_risk |
array of string |
Yes |
| Status | Description | Schema |
|---|---|---|
| 200 | Updated risk policy | dto.RiskPolicyDetailResponse |
| 400 | Invalid parameter | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 401 | Unauthenticated | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 403 | Insufficient permissions | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 500 | Internal server error | gitee_com_linmes_authms_base_dto.SimpleResponse |
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
code |
integer |
No | |||
data |
dto.RiskPolicyResponse |
No | |||
message |
string |
No | |||
timestamp |
string |
No |
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
required_methods |
array of string |
No | ['["totp"', '"sms"]'] |
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
high_risk |
dto.RiskPolicyLevel |
No | |||
low_risk |
dto.RiskPolicyLevel |
No | |||
medium_risk |
dto.RiskPolicyLevel |
No | |||
tenant_id |
string |
No | tnt_abc123 |
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
code |
integer |
No | |||
message |
string |
No | |||
timestamp |
string |
No |