The algorithm used to produce the TOTP. This parameter is ignored by some implementations and defaults to SHA1.
allow-multiple-device-registration
boolean
optional
false
Allow multiple device registrations. Defaults to false.
allow-registration-during-login
boolean
optional
true
auto-login-enabled
boolean
optional
false
When active a login will be automatically performed after a successful registration.
auto-redirect-enabled
boolean
optional
false
Auto-redirect to registration page if no TOTP device is already registered
clock-skew
int32
optional
0
Clock skew in seconds
delay-window
int32
optional
1
The Delay window of the algorithm. Greater number means that a TOTP can be used for a period of time so many times longer than the interval (delay window * interval).
device-expiration
int32
optional
Set a device expiration in seconds from the time the device is activated, if not set devices never expires. If this is set, it is not possible to override in the template. Only one device can be active per account, registering a new device expires any previous ones.
device-type
string
optional
idsvr-totp
The device type (or vendor) that will be stored in the device store. This is used in registration as well as on the lookup of the devices the user has associated. If you only use one device type, it is suggested to leave this setting as is. Otherwise refer to the documentation on how this is used exactly.
digits
int32
optional
6
Determines how long of a one-time passcode to display to the user. This parameter is ignored by some implementations and defaults to 6.
interval
int32
optional
30
The interval of the TOTP device. This parameter is ignored by some implementations and defaults to 30 seconds.