DocsAPI ReferenceAccount/bff/account/setup-otp-disable
postAccountAdmin BFF

/bff/account/setup-otp-disable

Removes the stored TOTP secret after verifying the user can still produce a valid code. When the user has no 2FA configured, returns { success: true } as a no-op.

AccountpostBffAccountSetup-otp-disable

Parameters

1 body

1 total
Body · 1
otpCodestringRequired

Current 6-digit TOTP code from the authenticator app — required to prove the request comes from the legitimate device and is not a session-hijack attempt to drop 2FA.

Request

POST /bff/account/setup-otp-disable

post
curl -X POST "https://api.bizkithub.com/bff/account/setup-otp-disable" \
  -H "Content-Type: application/json" \
  -H "Authorization: Bearer YOUR_API_KEY" \
  -d '{
  "otpCode": "example_otpCode"
}'

Response

JSON payload

{
  "success": true
}

All response codes

1 status code documented

Need an API key?

All BizKitHub API endpoints require authentication via API key.

Get API Key