From 3af68cc3c91ea81c86745c71cbc9893781943e47 Mon Sep 17 00:00:00 2001
From: "promptless[bot]" <179508745+promptless[bot]@users.noreply.github.com>
Date: Mon, 23 Mar 2026 15:03:42 +0000
Subject: [PATCH] Document requires_totp_mfa JWT claim

---
 docs/content/docs/(guides)/concepts/jwt.mdx | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/content/docs/(guides)/concepts/jwt.mdx b/docs/content/docs/(guides)/concepts/jwt.mdx
index b4c9f921f..6b6770dc1 100644
--- a/docs/content/docs/(guides)/concepts/jwt.mdx
+++ b/docs/content/docs/(guides)/concepts/jwt.mdx
@@ -42,6 +42,7 @@ Stack Auth JWTs contain standardized headers and claims that power authenticatio
 - **`project_id`**: Your Stack Auth project ID
 - **`branch_id`**: The project branch (currently always `main`)
 - **`refresh_token_id`**: ID of the associated refresh token
+- **`requires_totp_mfa`**: Whether the user has TOTP multi-factor authentication enabled
 - **`role`**: Always set to `authenticated` for valid users
 - **`name`**: The user's display name (nullable)
 - **`email`**: The user's primary email address (nullable)