Skip to content

Add login_hint parameter to OAuth profile configurations in SSO and Forgotten Password #723

New issue
New issue
Open
Open
Add login_hint parameter to OAuth profile configurations in SSO and Forgotten Password#723
@haydenconley

Description

@haydenconley
haydenconley
opened on Jan 8, 2026

The Problem
When making Oauth calls from PWM, the users are being asked twice to enter their username for account lookup purposes. Once from PWM to locate the profile and once from the IDP to process the event. This is not as smooth an experience as it could be.

The Solution
It would be helpful if the value passed to PWM for the profile lookup could be added as a login_hint when making Oauth calls to streamline the process. This would prevent the user from having to enter their username twice as a means to recover their password.

Alternative solutions
Since this would be slotting into a solution that is already in production in our environment and involves several technologies, processes, and teams, I haven't considered other ways to tackle this.

Additional context
My org is evaluating PWM as a replacement for NetIQ SSPR, and the login_hint feature is present in the NetIQ product.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions