Method: accounts.mfaEnrollment.withdraw

HTTP request
Request body
- JSON representation
Response body
- JSON representation
Authorization scopes
Try it!

Revokes one second factor from the enrolled second factors for an account.

HTTP request

POST https://identitytoolkit.googleapis.com/v2/accounts/mfaEnrollment:withdraw

Request body

The request body contains data with the following structure:

JSON representation
{ "idToken" : string , "mfaEnrollmentId" : string , "tenantId" : string }

Fields

Fields
`idToken`	`string` Required. User's ID token.
`mfaEnrollmentId`	`string` Required. MFA enrollment id from a current MFA enrollment.
`tenantId`	`string` The ID of the Identity Platform tenant that the user unenrolling MFA belongs to. If not set, the user belongs to the default Identity Platform project.

idToken

string

Required. User's ID token.

mfaEnrollmentId

string

Required. MFA enrollment id from a current MFA enrollment.

tenantId

string

The ID of the Identity Platform tenant that the user unenrolling MFA belongs to. If not set, the user belongs to the default Identity Platform project.

Response body

Withdraws MultiFactorAuth response.

If successful, the response body contains data with the following structure:

JSON representation
{ "idToken" : string , "refreshToken" : string }

Fields

Fields
`idToken`	`string` ID token updated to reflect removal of the second factor.
`refreshToken`	`string` Refresh token updated to reflect removal of the second factor.

idToken

string

ID token updated to reflect removal of the second factor.

refreshToken

string

Refresh token updated to reflect removal of the second factor.

Authorization scopes

Requires one of the following OAuth scopes:

https://www.googleapis.com/auth/identitytoolkit
https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview .