MFA Enrollment

Dashboard Setup

MFA enrollment requires users to register a TOTP device or Passkey. Configure it in the dashboard before implementing in your application. See End-User MFA - Enrollment for dashboard setup instructions.

Your UI SDK Implementation

TOTP
Passkey

Register device: registerTotpMfaDevice() returns a QR uri and secret.
Authenticate: authenticateTotpMfaDevice({ code }) completes the challenge.
Manage devices: getMfaDevices() lists devices; deleteMfaDevice() deletes.
Recovery codes: getMfaRecoveryCodes() to display; createNewMfaRecoveryCodes() to rotate; authenticateMfaRecoveryCode({ code }) to unblock login.

import { registerTotpMfaDevice, authenticateTotpMfaDevice, getMfaDevices } from '@dynamic-labs-sdk/client';

const register = async () => {
  const { uri } = await registerTotpMfaDevice();
  // Render QR code from `uri`
};

const verify = async (code) => {
  await authenticateTotpMfaDevice({ code });
};

const listDevices = async () => {
  const devices = await getMfaDevices();
  console.log(devices);
};

import {
  getMfaRecoveryCodes,
  createNewMfaRecoveryCodes,
  authenticateMfaRecoveryCode,
} from '@dynamic-labs-sdk/client';

const showCodes = async () => {
  const { recoveryCodes } = await getMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const rotateCodes = async () => {
  const { recoveryCodes } = await createNewMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const authWithRecovery = async (code) => {
  await authenticateMfaRecoveryCode({ code });
};

import { authenticateTotpMfaDevice, deleteMfaDevice } from '@dynamic-labs-sdk/client';

const deleteTotpDevice = async (deviceId, code) => {
  // Create a single-use MFA token using the device to be deleted
  await authenticateTotpMfaDevice({
    code,
    createMfaTokenOptions: { singleUse: true },
  });

  // Use the MFA token from the client to authorize deletion
  const mfaToken = dynamicClient.mfaToken;
  await deleteMfaDevice({ deviceId, mfaAuthToken: mfaToken });
};

Register: registerPasskey() creates and registers a passkey.
Authenticate: authenticatePasskeyMFA() completes the MFA challenge.
Manage: getPasskeys() lists; deletePasskey() removes.
Recovery codes: getMfaRecoveryCodes() to display; createNewMfaRecoveryCodes() to rotate; authenticateMfaRecoveryCode({ code }) to unblock login.

import { registerPasskey, authenticatePasskeyMFA, getPasskeys } from '@dynamic-labs-sdk/client';

const register = async () => {
  await registerPasskey();
};

const mfa = async () => {
  await authenticatePasskeyMFA();
};

const list = async () => {
  const keys = await getPasskeys();
  console.log(keys);
};

import {
  getMfaRecoveryCodes,
  createNewMfaRecoveryCodes,
  authenticateMfaRecoveryCode,
} from '@dynamic-labs-sdk/client';

const showCodes = async () => {
  const { recoveryCodes } = await getMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const rotateCodes = async () => {
  const { recoveryCodes } = await createNewMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const authWithRecovery = async (code) => {
  await authenticateMfaRecoveryCode({ code });
};

import { deletePasskey } from '@dynamic-labs-sdk/client';

const removePasskey = async (passkeyId) => {
  await deletePasskey({ passkeyId });
};

Introduction

Installation & Configuration

Chains & Networks

Authenticate

User & Session Management

Wallets

Funding & Onramp

Events

Dashboard Setup

Your UI SDK Implementation

Introduction

Installation & Configuration

Chains & Networks

Authenticate

User & Session Management

Wallets

Funding & Onramp

Events

​Dashboard Setup

​Your UI SDK Implementation

Dashboard Setup

Your UI SDK Implementation