This section shows examples of the Redirect to Web with One Time Password flow, where the consumer inputs an identifier and a One Time Password (OTP) to authenticate with their data holder.
Overview
The Redirect to Web with One Time Password authentication flow can be presented as two steps:
- User identifier
- One Time Password
At this step, the consumer will be able to enter their user identifier for verification with the data holder.
At this step, the consumer will be able to enter a One Time Password to authenticate and securely connect to the data holder.
Wireframes and guidelines
Note: The wireframes shown are examples of how to implement key rules, standards, and guidelines. Use the on-screen functions to adjust zoom level or expand the wireframes to be viewed at full screen.
The following wireframes also include guidance for ‘offline customers’, who are eligible energy consumers without online access to their energy account(s). For more information please refer to the Offline Customer Guidance on our CDR Support Portal.
Download open source asset
Open source design assets are created in Figma for the purposes of assisting implementation. This Figma file contains annotated wireframes and working prototypes for Redirect to Web with One Time Password.
Item | File | Date released | Version introduced |
|---|---|---|---|
2AU. Redirect to Web with One Time Password v1.35.0.2025.09.22 | 2AU. Redirect to Web with One Time Password v1.35.0.2025.09.22.fig | September 22, 2025 | 1.35.0 |
For past versions, refer to Change log.
About this page
References
The artefacts on this page were informed by the following sources.
Title | Author | Date published | URL | Type |
|---|---|---|---|---|
Change Request 700: CX Guidelines | Redirect to App (R2A) CX Guidelines Changes | Data Standards Body (DSB) | June 5, 2025 | github.com | Consultations |
Consultation Draft 369: Redirect to App - Draft Standards | Data Standards Body (DSB) | April 4, 2025 | github.com | Consultations |
Noting Paper 296: Offline Customer Authentication | Data Standards Body (DSB) | March 17, 2023 | github.com | Consultations |
One Time Password Research Report | Data Standards Body (DSB) | December 15, 2022 | cx.dsb.gov.au | Research |
CDR Support Portal: Offline Customer Guidance | Australian Competition and Consumer Commission (ACCC) | April 6, 2022 | cdr-support.zendesk.com | Guidance |
Security Profile: Authentication Flows | Data Standards Body (DSB) | January 1, 2022 | consumerdatastandardsaustralia.github.io | Guidance |
CDR Support Portal: Convention CDS-DC-0015 | Data Standards Body (DSB) | December 22, 2020 | cdr-support.zendesk.com | Guidance |
CDR Support Portal: Convention CDS-DC-0016 | Data Standards Body (DSB) | December 22, 2020 | cdr-support.zendesk.com | Guidance |
CX Workshop: Error handling | Office of the Australian Information Commissioner (OAIC) | August 1, 2020 | miro.com | Consultations |
Decision Proposal 127: CX Guidelines for Enhanced Error Handling | Data Standards Body (DSB) | May 21, 2020 | github.com | Consultations |
Phase 2, Stream 3 Research Report | Tobias | July 31, 2019 | cx.dsb.gov.au | Research |
Last updated
This page was updated @September 22, 2025
Have your say
Community consultations and maintenance are part of our ongoing process. Here’s how you can get involved:
- Request new Guidelines or changes to existing Guidelines through the CX Guidelines Consultation process
- Request new Standards or changes to existing Standards through the Standards Maintenance process
- Log a ticket for any questions about the rules, standards, or guidelines through the CDR Support Portal
- Email your feedback to cx@dsb.gov.au
Quick links to CX Guidelines:
Overview
Consent
Authenticate
Authorise
Consent Management
Notifications
Accessibility statement
→ cx@dsb.gov.au → cx.dsb.gov.au | cds.gov.au