User Management REST API not returning MFA information

XMLWordPrintable

    • Minor

      Issue Summary

      According to the documentation for the https://api.atlassian.com/users/{account_id}/manage UM REST API endpoint, the response should include information about MFA settings for the user:

      • mfa.read: read the current MFA enrollment state for the user
      • mfa.unenroll: unenroll the user from MFA

      However this is not working. Indeed:

      1. Calling https://api.atlassian.com/users/{account_id}/manage does not include above properties in the response
      2. Calling https://api.atlassian.com/users/{account_id}/manage?privileges=mfa.read (or mfa.unenroll) always returns "allowed":true, whether you have MFA enabled or not: 
        curl -H 'Authorization: Bearer <API_KEY>' -H 'Accept: application/json' -X GET https://api.atlassian.com/users/<ACCOUNT_ID>/manage?privileges=mfa.read

{"mfa.read":{"allowed":true}}

      Steps to Reproduce

      1. Being an Organization administrator, go to admin.atlassian.com and Create an API KEY
      2. Use the api key to authorize a REST API call against the endpoint https://api.atlassian.com/users/{account_id}/manage (replace account_id with the account-id of a managed account)

      Expected Results

      Among the other properties, also mfa.read and mfa.unenroll are returned.

      Actual Results

      Everything is returned, but mfa.read and mfa.unenroll

      Also:

      Workaround

      No workaround available at the moment.

        1. POSTMAN.jpg
          71 kB
          Dario B
        2. Screenshot 2020-12-14 at 2.24.43 PM.png
          135 kB
          Sugandha Singh

            Assignee:
            Aneita
            Reporter:
            Dario B
            Votes:
            3 Vote for this issue
            Watchers:
            16 Start watching this issue

              Created:
              Updated:
              Resolved: