/bff/account/setup-otp-disable
Removes the stored TOTP secret after verifying the user can still produce a valid code. When the user has no 2FA configured, returns { success: true } as a no-op.
AccountpostBffAccountSetup-otp-disable
Parameters
1 body
Body · 1
otpCodestringRequiredCurrent 6-digit TOTP code from the authenticator app — required to prove the request comes from the legitimate device and is not a session-hijack attempt to drop 2FA.
Request
POST /bff/account/setup-otp-disable
curl -X POST "https://api.bizkithub.com/bff/account/setup-otp-disable" \
-H "Content-Type: application/json" \
-H "Authorization: Bearer YOUR_API_KEY" \
-d '{
"otpCode": "example_otpCode"
}'Response
JSON payload
{
"success": true
}All response codes
1 status code documented
Need an API key?
All BizKitHub API endpoints require authentication via API key.