Identity Cloud

User self-service overview

User self-service lets users create and manage their own accounts, while you control the available features. You manage features and user journeys through the Identity Cloud admin UI.

Nodes for self-service journeys

The following nodes are designed for self-service journeys, although you can use them in any journey.

Accept Terms and Conditions node

Attribute Collector node

Attribute Present Decision node

Attribute Value Decision node

Consent Collector node

Create Object node

Display Username node

Email Suspend node

Email Template node

Identify Existing User node

Increment Login Count node

KBA Decision node

KBA Definition node

KBA Verification node

Login Count Decision node

Patch Object node

Platform Password node

Platform Username node

Profile Completeness Decision node

Query Filter Decision node

Required Attributes Present node

Select Identity Provider node

Social Provider Handler node

Terms and Conditions Decision node

Time Since Decision node

User self-service journeys are further extensible through ForgeRock Marketplace nodes.

The following journeys are explored in this section:

Registration

The sample Registration journey describes a basic registration flow, where ForgeRock Identity Platform prompts the user to provide several profile attributes, then attempts to create the user and log the user in. For details, refer to User self-registration. For more information about configuring registration to include social identity providers, refer to Social authentication.

Login

The sample Login journey describes a basic login flow, where the user is prompted to provide a username and password, then passed to a progressive profile journey before being logged in. For details, refer to Login with self-service. For more information about including social identity providers in a login journey, refer to Social authentication.

Progressive Profiles

The sample Progressive Profile journey is called by the Login journey sample. It checks the login count to check whether further action is needed. If no action is required, it returns to the Login journey to complete logging in. If the specified number of logins is reached, it instead checks whether user preferences have been set, and if not, prompts the user to set those preferences. It then returns to the Login journey to finish logging in. For more information about using progressive profiling, refer to Progressive profile.

Password Reset

The Password Reset sample journey provides a method for users to reset their password by providing their email and answering some security questions. If the questions are answered correctly, the user is emailed a password reset link, which they must click to proceed. They are then presented with a password prompt to enter a new password. For more information, refer to Password reset.

Forgotten Username

The Forgotten Username sample journey gives users a method to recover their username by entering an email address. If the email address is associated with a user account, the account’s username will be emailed to the user. The email includes a link to log in, which will take the user through the Login journey. For more information, refer to Username recovery.

Update Password

The Update Password sample journey lets users change their passwords. The journey assumes that the user has already logged in successfully. It checks the user’s session data and, if the session is valid, prompts the user to update their password. For more information, refer to Password updates.

Copyright © 2010-2023 ForgeRock, all rights reserved.