Complete a credential connection that requires provider MFA
Only called after `/devices/auth/connect` returned `connection_state=pending_provider_mfa`. On a correct code, completes the connection and starts backfill. On an incorrect code, returns `failed`.
Authorization
MemberBearer Member-scoped JWT minted by POST /v1/auth/token. Required on every /v1/users/{user_id}/... route; the token's sub claim must match the path user_id.
In: header
Path Parameters
uuidHeader Parameters
Request Body
application/json
TypeScript Definitions
Use the request body type in TypeScript.
Response Body
application/json
application/json
curl -X POST "https://loading/v1/users/497f6eca-6276-4993-bfeb-53cbbbba6f08/devices/auth/connect/mfa" \ -H "Content-Type: application/json" \ -d '{ "provider_slug": "string", "mfa_code": "string" }'{
"data": {
"connection_state": "success",
"provider_slug": "string",
"backfill_status": "pending",
"provider_mfa": {
"method": "sms",
"hint": "string"
}
}
}{
"detail": [
{
"loc": [
"string"
],
"msg": "string",
"type": "string"
}
]
}Connect a credential-based provider
Username/password flow for non-OAuth providers (Dexcom G6, 8Sleep, Peloton, Zwift). On success, the connection is established and historical backfill begins. If the provider requires MFA, `connection_state=pending_provider_mfa` and the partner must collect a code and call `POST /v1/users/{user_id}/devices/auth/connect/mfa` to complete.
Trigger a sync of all connected cloud providers
Force-refresh affordance — partners typically don't need this (providers sync on their own cadence). Returns `202` with a `job_id`; partners can poll the async-jobs service.