PUT `/admin/mfa/risk-policies/{level}`

更新租户指定风险等级的MFA因子要求。参考：NIST SP 800-63B §5.2 (Risk-based Authentication)。需要管理员权限。

MFA `bearerAuth` application/json

Request Parameters

Name	In	Type	Required	Default	Example	Constraints	Description
`level`	`path`	`string`	Yes				风险等级（low/medium/high）

Request Body

Schema: dto.UpdateRiskPolicyByLevelRequest

Field	Type	Required	Example	Constraints	Description
`required_methods`	array of string	Yes
`description`	`string`	No
`enabled`	`boolean`	No

Responses

Status	Description	Schema
200	更新后的策略	`dto.RiskPolicyItemDetailResponse`
400	参数错误	`gitee_com_linmes_authms_base_dto.SimpleResponse`
401	未认证	`gitee_com_linmes_authms_base_dto.SimpleResponse`
403	权限不足	`gitee_com_linmes_authms_base_dto.SimpleResponse`
500	服务器内部错误	`gitee_com_linmes_authms_base_dto.SimpleResponse`

Referenced Schemas

dto.RiskPolicyItem

Field	Type	Required	Example	Constraints	Description
`created_at`	`string`	No	`2026-05-25T08:00:00Z`
`description`	`string`	No	`High-risk policy for new devices`
`enabled`	`boolean`	No	`True`
`id`	`string`	No	`rp_abc123`
`level`	`string`	No	`high`
`required_methods`	array of string	No	`['["totp"', '"sms"]']`
`updated_at`	`string`	No	`2026-05-25T08:00:00Z`

dto.RiskPolicyItemDetailResponse

Field	Type	Required	Example	Constraints	Description
`code`	`integer`	No
`data`	`dto.RiskPolicyItem`	No
`message`	`string`	No
`timestamp`	`string`	No

gitee_com_linmes_authms_base_dto.SimpleResponse

Field	Type	Required	Example	Constraints	Description
`code`	`integer`	No
`message`	`string`	No
`timestamp`	`string`	No

Try this API in Scalar → Download OpenAPI spec (JSON) ↓

↑