logo Windmill Hub
Login
All items
0

Verify a TOTP or backup code for a user

by
Published Apr 8, 2025

Verify that the provided TOTP or backup code is valid for the user. Verifying a backup code will result it in being consumed (i.e. it will become invalid). Useful for custom auth flows and re-verification.

Script clerk Verified
Use in Windmill

The script

Submitted by hugo697 Bun
Verified 428 days ago
All edits
Permalink
1 
//native
2 
type Clerk = {
3 
  apiKey: string;
4 
};
5 
/**
6 
 * Verify a TOTP or backup code for a user
7 
 * Verify that the provided TOTP or backup code is valid for the user.
8 
Verifying a backup code will result it in being consumed (i.e. it will
9 
become invalid).
10 
Useful for custom auth flows and re-verification.
11 
 */
12 
export async function main(
13 
  auth: Clerk,
14 
  user_id: string,
15 
  body: { code: string },
16 
) {
17 
  const url = new URL(`https://api.clerk.com/v1/users/${user_id}/verify_totp`);
18
19 
  const response = await fetch(url, {
20 
    method: "POST",
21 
    headers: {
22 
      "Content-Type": "application/json",
23 
      Authorization: "Bearer " + auth.apiKey,
24 
    },
25 
    body: JSON.stringify(body),
26 
  });
27 
  if (!response.ok) {
28 
    const text = await response.text();
29 
    throw new Error(`${response.status} ${text}`);
30 
  }
31 
  return await response.json();
32 
}
33