This article has been archived and is no longer maintained by ForgeRock.
The goto parameter that is present in the login URL, for example:http://host1.example.com:8080/openam/XUI/#login/&goto=http://forgerock.com
is removed after the user resets their password (using the Forgot Password link) and returns to the login page (using the Return to Login Page link).
This behavior can also be seen in SAML 2 federation where the IdP or SP initiated login URL contains parameters; when selecting the Forgot Password link on the IdP, these parameters are also lost at the end of the flow.
Implemented the user self-service Forgotten Password Reset feature.
The XUI strips out the parameters from the login URL at the end of the Forgot Password flow instead of preserving them throughout the process.
This issue can be resolved by upgrading to OpenAM 13.5.1 or later; you can download this from BackStage.
The goto parameter is retained if the user remains within the browser throughout the process, however, it is lost once the process leaves the UI. This means the goto parameter is still removed if you have email verification switched on. There is an RFE to ensure the goto parameter is retained when email verification is used: OPENAM-10394 (RFE: Include goto URL in verification email sent during User Registration / Forgot Password flow).