The automatic login functionality, available for some authenticators, allows the user to automatically log in after some authentication management operations, without needing to provide additional information.
As an example, the HTML Forms Authenticator allows the user to automatically login after a successful activation or password recovery, without having to provide the password again.
Automatic login is always disabled by default for all authenticators.
To enable it on a specific supported authenticator, the auto-login-enabled property needs to be assigned with true on that authenticator’s configuration.
When automatic login is enabled for a specific authenticator, the following behaviour is provided by the authentication service:
Sometimes the automatic authentication cannot be completed immediately because there isn’t enough contextual information.
An example of this happens when an user starts an authentication flow on one browser, selects password recovery, and then ends that recovery flow on a different browser.
In those cases, restarting a new authentication flow in the browser where the recovery flow was completed will still perform an automatic login.
Automatic login will only happen if:
Automatic login is available for the following authenticators:
The operations where automatic login is available are described in the specific authenticator documentation.