This article explains how the Initialize Next Auth Flow option can be used in public self-services. If this option is enabled, the authentication flow following the public self-service flow, can be initialized with the user identity and tags from this self-service flow.
Combined with using skip conditions in authentication flows, this feature allows significant improvement of the user experience.
- Example use cases:
- Skip the username or username-password step in the login process following a password reset.
- Directly jump to a 2nd-factor authentication step after a successful unlock self-service.
- Any other use case where the user is already authenticated or has an authentication tag within a public self-service flow, as this allows securely skipping an initial re-authentication and proceeding with a follow-up authentication step.
The Initialize Next Auth Flow option allows skipping a re-authentication step for users' convenience. Self-services like password resets typically provide little evidence of the end user's identity. Therefore, access to applications or services should only be possible after additional strong authentication.