POST `/auth/recover-account`

当用户无法访问主身份（邮箱或手机）时，通过预先设置的恢复联系人来验证身份并发起密码重置流程。参考：NIST SP 800-63B §5.1.1.2、OWASP ASVS V2.3。

身份认证 None application/json

Request Body

Schema: dto.RecoverAccountRequest

Field	Type	Required	Example	Constraints	Description
`identity`	`string`	Yes

Responses

Status	Description	Schema
200	恢复码已发送至受信任联系人	`dto.RecoverAccountResponse`
400	请求参数无效	`gitee_com_linmes_authms_base_dto.SimpleResponse`
500	服务器内部错误	`gitee_com_linmes_authms_base_dto.SimpleResponse`

Referenced Schemas

dto.RecoverAccountResponse

Field	Type	Required	Example	Constraints	Description
`contact_types`	array of string	No
`expires_in`	`integer`	No
`masked_to`	`string`	No
`message`	`string`	No

gitee_com_linmes_authms_base_dto.SimpleResponse

Field	Type	Required	Example	Constraints	Description
`code`	`integer`	No
`message`	`string`	No
`timestamp`	`string`	No

Try this API in Scalar → Download OpenAPI spec (JSON) ↓

↑