Certain requests require a 2FA confirmation code to be provided. This endpoint is used to generate a single-use code that will be emailed to the authenticated user.

This endpoint can only be accessed by users (via a user session token or via a user API token). Application API tokens cannot access this endpoint.

This action triggers an email notification.

Security protection

Only one 2FA confirmation code can be active at a time. If a new 2FA confirmation code is generated, the previous code will be invalidated. This means that only one action that requires a 2FA confirmation code can be performed at a time.