When a user clicks a Login button in order to log on to a Hosted Login website, that button click initiates an authorization request. This request helps to drive the user login experience, specifying everything from the screen displayed to the user to the language and locale used when rendering that screen. The following videos describe some of the key parameters available for use in an authorization request, and show you what happens if you use these parameters.
Using the claims Parameter
Running Time: 2:14
Denotes the claims (i.e., user profile attributes) to be included in the identity token or made accessible from the userinfo endpoint. Or both.
Using the login_hint Parameter
Running Time: 1:30
The login_hint parameter provides a way to prepopulate the email address field on the Hosted Login sign-in screen.
Using the nonce Parameter
Running Time: 1:49
A "nonce" is a random string of characters included in your authorization request. The nonce included in the authorization request should match the nonce value that appears in your identity token. If the two values match, that provides assurance that the identity token you received is the identity token you requested.
Using the prompt Parameter
Running Time: 2:12
The prompt parameter specifies which screen (if any) is displayed when a user makes an authorization request. Possibilities range from showing the sign-in screen or the registration screen to not showing a screen at all. In the latter case, the authorization server attempts to authenticate the user using the credentials from an existing Hosted Login session.
Using the scopes Parameter
Running Time: 1:50
Specifies the OpenID Connect scopes that will be accessible from the userinfo endpoint following a successful authentication.
Using the ui_locales Parameter
Running Time: 1:48
The ui_locales parameter specifies the language/locale used when displaying Hosted Login's login, registration, and user profile screens.