Identity Cloud

Identity Cloud hosted pages

Identity Cloud hosts its own UI pages, referred to as hosted pages, that you can use in journeys and the Identity Cloud End User UI. You can use these pages to quickly create and test common end-user self-service operations.

Identity Cloud offers two types of hosted pages:

  • Hosted account pages — Pages for end-user account management, shown after a login journey.

  • Hosted journey pages — Pages for end-user login journeys.

In the following example, the sign-in page was created using a hosted journey page. Barbara Jensen’s account page was created using a hosted account page.

600

Not only do these hosted pages support localization, but you can use themes to customize their look and feel to meet the branding guidelines of your organization.

Deactivate hosted account pages

Hosted account pages are activated by default. If you deactivate them, you can reactivate them at any time.

You can use the ForgeRock SDKs or APIs to create and host your own custom account pages. If you do this, ForgeRock recommends that you deactivate the hosted account pages to ensure there is no risk of unauthorized access to end-user profile information by a malicious user.

Hosted account pages can be deactivated independently from hosted journey pages.

When you deactivate the hosted accout pages, Identity Cloud displays the following web page to unauthorized end users:

450

After deactivating the default end-user profile, you can still use the hosted end-user journey UI while denying unauthorized access to end-user profiles. Your customers manage only their own profiles or delegate administration using your application.

Afterward, all hosted pages associated with your tenant are deactivated.

  1. In the Identity Cloud admin UI, open the Tenant menu, and go to Tenant Settings > Global Settings.

  2. Click End User UI.

  3. On the End User UI page, do one of the following:

    • To activate hosted pages, beside Hosted Account Pages, click Activate. The Global Settings toggle displays the status as Active.

    • To deactivate hosted pages, beside Hosted Account Pages, click Deactivate. The Global Settings toggle displays the status as Inactive.

The change takes effect immediately.

When you deactivate hosted pages, all hosted pages associated with your tenant are deactivated.

Deactivate hosted journey pages

You can use the ForgeRock SDKs or APIs to create and host your own custom journeys. If you do this, ForgeRock recommends that you deactivate the hosted journey pages to ensure there is no risk of unauthorized access to the login, registration, or password reset pages by a malicious user.

Hosted journey pages can be deactivated independently from hosted account pages.

When you deactivate the hosted journey pages, Identity Cloud displays the following web page to unauthorized end users:

450

After you deactivate the default hosted journey pages, you can still administer the tenant environment while preventing unauthorized access to default journey information.

For an explanation about how hosted pages integrate with the default journey, refer to Journeys.

Other resources

For more ways to use and customize hosted pages, refer to the following links:

  • Customize login and end user pages - Customize the look and feel of the login (journey) pages. This includes logos, headers, footers, the layout of the overall page, and the actions and information your end users have access to in the Identity Cloud End User UI.

  • Localize login and end-user pages - Support different languages in the UI with localization.

  • End-user pages - Explore an example of a journey and the Identity Cloud End User UI screens that display to end users (depending on the configuration).

Copyright © 2010-2024 ForgeRock, all rights reserved.