/admin/mfa/risk-policy
全量更新租户的低/中/高风险等级的MFA因子要求。参考:NIST SP 800-63B §5.2 (Risk-based Authentication)。需要管理员权限。
Request Body
Schema: dto.UpdateRiskPolicyRequest
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
high_risk |
array of string |
Yes | |||
low_risk |
array of string |
Yes | |||
medium_risk |
array of string |
Yes |
Responses
| Status | Description | Schema |
|---|---|---|
| 200 | 更新后的风险策略 | dto.RiskPolicyDetailResponse |
| 400 | 参数错误 | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 401 | 未认证 | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 403 | 权限不足 | gitee_com_linmes_authms_base_dto.SimpleResponse |
| 500 | 服务器内部错误 | gitee_com_linmes_authms_base_dto.SimpleResponse |
Referenced Schemas
dto.RiskPolicyDetailResponse
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
code |
integer |
No | |||
data |
dto.RiskPolicyResponse |
No | |||
message |
string |
No | |||
timestamp |
string |
No |
dto.RiskPolicyLevel
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
required_methods |
array of string |
No | ['["totp"', '"sms"]'] |
dto.RiskPolicyResponse
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
high_risk |
dto.RiskPolicyLevel |
No | |||
low_risk |
dto.RiskPolicyLevel |
No | |||
medium_risk |
dto.RiskPolicyLevel |
No | |||
tenant_id |
string |
No | tnt_abc123 |
gitee_com_linmes_authms_base_dto.SimpleResponse
| Field | Type | Required | Example | Constraints | Description |
|---|---|---|---|---|---|
code |
integer |
No | |||
message |
string |
No | |||
timestamp |
string |
No |