POST `/mfa/sms/send`

向用户手机发送短信验证码，用于短信MFA认证。生产环境不返回验证码明文。参考：OWASP ASVS V2.8。

MFA `bearerAuth` application/json

Request Body

Schema: dto.SMSSendRequest

Field	Type	Required	Example	Constraints	Description
`phone`	`string`	Yes
`purpose`	`string`	No			login, bind, reset

Responses

Status	Description	Schema
200	发送成功	`dto.SMSSendDetailResponse`
400	参数错误	`gitee_com_linmes_authms_base_dto.SimpleResponse`
401	未认证	`gitee_com_linmes_authms_base_dto.SimpleResponse`
429	请求过于频繁	`gitee_com_linmes_authms_base_dto.SimpleResponse`
500	服务器内部错误	`gitee_com_linmes_authms_base_dto.SimpleResponse`

Referenced Schemas

dto.SMSSendDetailResponse

Field	Type	Required	Example	Constraints	Description
`code`	`integer`	No
`data`	`dto.SMSSendResponse`	No
`message`	`string`	No
`timestamp`	`string`	No

dto.SMSSendResponse

Field	Type	Required	Example	Constraints	Description
`code`	`string`	No	`123456`
`expires`	`string`	No	`2026-05-25T12:05:00Z`
`sent`	`boolean`	No	`True`

gitee_com_linmes_authms_base_dto.SimpleResponse

Field	Type	Required	Example	Constraints	Description
`code`	`integer`	No
`message`	`string`	No
`timestamp`	`string`	No

Try this API in Scalar → Download OpenAPI spec (JSON) ↓

↑