Forced reauthentication and routing the user automatically to the IdP with HRD

konrad.sopala · June 5, 2023, 11:45am

Problem statement

How to send the user automatically to the IdP login bypassing the login page and forcing the reauthentication?

If you just specify login_hint (and other required parameters): desired behavior
If you specify login_hint and prompt=login: home realm discovery breaks – the user gets their email in the username field, and they’re prompted for a password.
If you specify login_hint and max_age=0: desired behavior

So, if you need a forced reauthentication with a login_hint and home realm discovery, use max_age only.

Topic		Replies	Views
Disable the login_hint Parameter that is Passed by Default to the IdP Knowledge Articles login_hint , login_email	1	253	June 5, 2024
Use login_hint but do not auto submit passwordless form if sso is enabled Help identifier-first , login-experience	0	754	August 15, 2023
Disable Idp Domain for some users Help auth0 , login , universal-login	5	1958	December 27, 2022
Use login_hint but do not auto submit passwordless form Help login-experience , new-universal-login-experience	5	1094	May 31, 2023
Home Realm Discovery - Customization Help auth0 , login	2	7669	February 27, 2021