Update Security Config

POST/web/v1/users/self/security/configJWT

Updates the user's security configuration including SSO settings, maximum concurrent sessions, and IP whitelist preferences.

Authentication

Auth Chain: WEB Chain — requires Authorization: Bearer <jwt> These headers are injected by the system (frontend does nothing): X-PORTAL-ACCESS-CODE (Nginx), X-Request-Id (Gateway)

Request Parameters

Name	Type	Required	In	Description
`request`	`Object`	Yes	body	SecurityConfigUpdateRequest object (see request body schema)

Success Response

Success200

{
  "version": "1.3.0",
  "timestamp": 1709337600000,
  "success": true,
  "code": "2000",
  "message": "SUCCESS",
  "data": {
    "ssoEnabled": false,
    "maxSessions": 5,
    "mfaEnabled": true,
    "ipWhitelistEnabled": false
  }
}

Error Responses

Unauthorized401

{
  "success": false,
  "code": "4010",
  "message": "Invalid or expired token"
}

Notes

Changes to session limits may terminate excess sessions.
Uses secure channel for encrypted communication.

Update Security Config ​

Authentication ​

Request Parameters ​

Success Response ​

Error Responses ​

Notes ​

Update Security Config

Authentication

Request Parameters

Success Response

Error Responses

Notes