# Enable 2FA (get QR code) POST //localhost:8080/api/v1/auth/2fa/setup Generates TOTP secret and backup codes. Returns once; store securely. Reference: https://api.alephant.io/api-reference/saa-s-api/auth/enable-2-fa-get-qr-code ## OpenAPI Specification ```yaml openapi: 3.1.0 info: title: saas-openapi version: 1.0.0 paths: /api/v1/auth/2fa/setup: post: operationId: enable-2-fa-get-qr-code summary: Enable 2FA (get QR code) description: Generates TOTP secret and backup codes. Returns once; store securely. tags: - subpackage_auth parameters: - name: Authorization in: header description: Bearer {access_token} required: true schema: type: string responses: '200': description: 'data: { secret, qrCodeUri, backupCodes }' content: application/json: schema: $ref: >- #/components/schemas/github_com_alephant_backend-saas-service_internal_service.TwoFASetupOut '401': description: AUTH_TOKEN_EXPIRED content: application/json: schema: type: object additionalProperties: description: Any type servers: - url: //localhost:8080 components: schemas: github_com_alephant_backend-saas-service_internal_service.TwoFASetupOut: type: object properties: backupCodes: type: array items: type: string qrCodeUri: type: string secret: type: string title: github_com_alephant_backend-saas-service_internal_service.TwoFASetupOut ``` ## SDK Code Examples ```python import requests url = "https://localhost:8080/api/v1/auth/2fa/setup" headers = {"Authorization": "Authorization"} response = requests.post(url, headers=headers) print(response.json()) ``` ```javascript const url = 'https://localhost:8080/api/v1/auth/2fa/setup'; const options = {method: 'POST', headers: {Authorization: 'Authorization'}}; try { const response = await fetch(url, options); const data = await response.json(); console.log(data); } catch (error) { console.error(error); } ``` ```go package main import ( "fmt" "net/http" "io" ) func main() { url := "https://localhost:8080/api/v1/auth/2fa/setup" req, _ := http.NewRequest("POST", url, nil) req.Header.Add("Authorization", "Authorization") res, _ := http.DefaultClient.Do(req) defer res.Body.Close() body, _ := io.ReadAll(res.Body) fmt.Println(res) fmt.Println(string(body)) } ``` ```ruby require 'uri' require 'net/http' url = URI("https://localhost:8080/api/v1/auth/2fa/setup") http = Net::HTTP.new(url.host, url.port) http.use_ssl = true request = Net::HTTP::Post.new(url) request["Authorization"] = 'Authorization' response = http.request(request) puts response.read_body ``` ```java import com.mashape.unirest.http.HttpResponse; import com.mashape.unirest.http.Unirest; HttpResponse response = Unirest.post("https://localhost:8080/api/v1/auth/2fa/setup") .header("Authorization", "Authorization") .asString(); ``` ```php request('POST', 'https://localhost:8080/api/v1/auth/2fa/setup', [ 'headers' => [ 'Authorization' => 'Authorization', ], ]); echo $response->getBody(); ``` ```csharp using RestSharp; var client = new RestClient("https://localhost:8080/api/v1/auth/2fa/setup"); var request = new RestRequest(Method.POST); request.AddHeader("Authorization", "Authorization"); IRestResponse response = client.Execute(request); ``` ```swift import Foundation let headers = ["Authorization": "Authorization"] let request = NSMutableURLRequest(url: NSURL(string: "https://localhost:8080/api/v1/auth/2fa/setup")! as URL, cachePolicy: .useProtocolCachePolicy, timeoutInterval: 10.0) request.httpMethod = "POST" request.allHTTPHeaderFields = headers let session = URLSession.shared let dataTask = session.dataTask(with: request as URLRequest, completionHandler: { (data, response, error) -> Void in if (error != nil) { print(error as Any) } else { let httpResponse = response as? HTTPURLResponse print(httpResponse) } }) dataTask.resume() ```