Checklist ref
2AU.03.09
Area
2AU. Redirect to Web with OTP
Wireframe ref
09
Type
Technical Standard
Requirement level
MUST NOT
Participant
Data Holder
Statement
Data Holders MUST NOT request that the customer enter an existing password in the redirected page.
Reference
Security Profile: Authentication Flows
Example
Authenticate: Redirect to Web with One Time Password
Version introduced
1.4.0 or earlier
Date introduced
12 August 2020 or earlier
Date modified
22 September 2025
Status
Retired