Hosted OpenID Connect (OIDC) user journeys to reduce time-to-market and an API to develop custom experiences

Next Identity Journeys deliver hosted pre-registration, registration, login, forgot password, profile, and other common customer use cases with easy Open ID Connect (OIDC) integration patterns, as well as a full-featured API to develop unique customer experiences that meet your business requirements


Integrate with Next Identity Journeys

Detailed use cases, example code, and more can be found in the Integration Guide for Journeys Hosted and Journeys API.

Deploy fast, save money, follow industry standards and best practices, achieve security and privacy requirements, and stay on the cutting edge across your global customer identity landscape.


Secured by Threat Guard

Journeys is secured by Next Identity Secure Threat Guard to protect your customers, your business, and your global customer identity service.


Invite customers to your application via activation journeys designed to control access to your application while providing customers the opportunity to complete their profile after receiving an invitation via email or SMS.


Provide your customers with a fully self-service registration option. Collect as much or as little info as you need during the registration process, determine the authentication options, suggest or enforce 2-step verification and make sure your customers have verified their method of authentication during the registration journey by sending them an email or SMS with a code or link to complete their registration.

For easier email verification following the registration process, Next Identity Hosted Journeys uses sniper links. This feature will detect email addresses from common email service providers (Gmail, Yahoo, Apple, Hotmail), and will provide a link for the end user to auto open the email client in their browser. All other email users will see text instructing them to open their email providers.


Support multiple login methods depending on your application's requirements including email and password, mobile phone number and password, passwordless options including biometric authentication. Protect your customers and your brand against credential stuffing attacks with Form Security from Threat Guard.

Forgot Password

Reduce calls and support requests from your customers by offering self-service options to reset their password and to have a "magic link" sent to them if they forget their password.


Enable customers to update their own profile including changing their email address or phone number, update their mailing address or communication preferences, or any editing other profile attribute you collect.

Sign Out

Give customers control over access to their account by enabling them to sign out of active sessions on all devices.

Additional Integration Features

The following are additional workflows that simplify integration.


The code-for-token exchange will often be the second step in your integration with Next Identity Journeys. In this step, the user has already been redirected back to your application after successful registration or sign in, and the redirect URL will contain an authorization code parameter.

User Info

Retrieve data from a user's profile with a valid access token.


The discovery document, also referred to as the "well-known endpoint," contains OpenID Connect values that can be retrieved by OIDC clients. The discovery document enables OIDC clients to configure themselves in order to be able to access your implementation of Next Identity.

Sign Out

Give customers control over access to their account by enabling them to end their session and sign out of active sessions on all devices.

Next Identity Journeys API extends customer identity service governance across your landscape while giving application development teams the ability to customize user journeys that meet their technical and business requirements.