Hide Request Parameters of Hosted Login Page

Is there a way use the hosted login page without having to send request parameters using GET? I recently switched from using embedded lock to using the hosted login page in order to be able to call authorize with custom audience. All works well, however I am not very happy with the verbose request string.

To my knowledge that is currently unavoidable and the request parameters will have to be present in the query component.

Ok. The solution would be to wait for the lock widget to support API authorization then.

Ok. The solution would be to wait for the lock widget to support API authorization then.

Lock 10.22+ supports cross-origin authentication which would allow to do embedded authentication (in the client application itself) while also making an authorization request (aka audience parameter). You should check the cross-origin docs to see if that would answer your requirements.