Approve a device login after MFA

curl --request POST \
  --url https://coreapi-dev.us.bcpapers.ca/v2/device-login/mfa/complete \
  --header 'Authorization: <api-key>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "userCode": "<string>"
}
'

{
  "redirectTo": "<string>"
}

POST

device-login

mfa

complete

Approve a device login after MFA

curl --request POST \
  --url https://coreapi-dev.us.bcpapers.ca/v2/device-login/mfa/complete \
  --header 'Authorization: <api-key>' \
  --header 'Content-Type: application/json' \
  --data '
{
  "userCode": "<string>"
}
'

{
  "redirectTo": "<string>"
}

Authorizations

Authorization

string

header

required

Paste the JWT token only (no "Bearer " prefix needed — the UI adds it automatically).

Body

application/json

User code from the lock screen

userCode

string

Response

redirectTo

string

Poll for the device-login session (RFC 8628 token endpoint)Begin browser approval for a device login