Skip to content

Multi-Factor Authentication

This is a work in progress.

Requesting an MFA token

URL: https://myaussie-api.aussiebroadband.com.au/2fa/send

POST body: {"method":"sms"} OR {"method":"email"}

Headers:

{ "x-two-factor-auth-capable-client": "true" }

Submitting the Token

URL: https://myaussie-api.aussiebroadband.com.au/2fa/verify

POST body: {"token":"<value>"}

Headers:

{ "x-two-factor-auth-capable-client": "true" }

As far as I can tell this just updates the session/cookies so you're "approved" for MFA things after that.