Notice: Your site will use Java, PHP, or .Net technology? Have a look at our SDK´s in order to have a rich set of fetures for accessing these APIs. By removing the need to manage access tokens manually, the SDK greatly simplifies the process of authentication and authorizing users and apps for your project.
DruID Identity (CIAM) provides consumers with the option to enable multiple authentication factors for their accounts. This includes the utilization of authentication apps such as Google Authenticator or Microsoft Authenticator. DruID is compatible with any app that adheres to the RFC 6238 standard. However, it is recommended to select an app that offers cloud backup capabilities. This ensures easy access recovery in scenarios where the user loses their phone.
Alternatively, users can opt to receive authentication codes via SMS on their mobile phones. DruID offers its own SMS providers and can also accommodate different providers as per organization preferences.
Moreover, Multi-Factor Authentication (MFA) management can be either mandatory or voluntary. In the former scenario, users are obligated to configure MFA following their initial login. Failure to do so will result in the non-receipt of an access_token, thereby restricting access to the account. Conversely, in the latter scenario, users have the choice to activate MFA. To enable this feature, users must access the private area and opt-in accordingly.
| Description | URL | Method |
| Create Channel | /activityid/v1/mfa/create | POST |
| Update Channel | /activityid/v1/mfa/update | POST |
| Delete Channel | /activityid/v1/mfa/delete | POST |
| Validate Code | /activityid/v1/mfa/approve | POST |
| Recover Account | /activityid/v1/mfa/consume | POST |
| Resend SMS | /activityid/v1/mfa/send | POST |