/AWS1/CL_CGP=>VERIFYSOFTWARETOKEN()
¶
About VerifySoftwareToken¶
Use this API to register a user's entered time-based one-time password (TOTP) code and mark the user's software token MFA status as "verified" if successful. The request takes an access token or a session string, but not both.
Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For this operation, you can't use IAM credentials to authorize requests, and you can't grant IAM permissions in policies. For more information about authorization models in Amazon Cognito, see Using the Amazon Cognito user pools API and user pool endpoints.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_USERCODE
TYPE /AWS1/CGPSOFTWARETOKMFAUSERC00
/AWS1/CGPSOFTWARETOKMFAUSERC00
¶
The one- time password computed using the secret code returned by AssociateSoftwareToken.
Optional arguments:¶
IV_ACCESSTOKEN
TYPE /AWS1/CGPTOKENMODELTYPE
/AWS1/CGPTOKENMODELTYPE
¶
A valid access token that Amazon Cognito issued to the user whose software token you want to verify.
IV_SESSION
TYPE /AWS1/CGPSESSIONTYPE
/AWS1/CGPSESSIONTYPE
¶
The session that should be passed both ways in challenge-response calls to the service.
IV_FRIENDLYDEVICENAME
TYPE /AWS1/CGPSTRINGTYPE
/AWS1/CGPSTRINGTYPE
¶
The friendly device name.