GOV.UK One Login
GOV.UK One Login is the way for government services to:
- sign in their users
- prove their users’ identity
This technical documentation gives you information on how to:
- plan the functionality your service needs
- register your service with GOV.UK One Login
- integrate with GOV.UK One Login to authenticate users and prove their identity
- go live with your integration
You can read further documentation about how GOV.UK One Login works.
Contact us if you have any questions on our #govuk-one-login Slack channel.
Documentation updates
These are the most recent changes to this documentation.
Publication date | Update |
---|---|
April 9 2024 | Update the technical flow diagram to document the use of the /logout endpoint. |
April 3 2024 | New guidance “Understand your user’s return code claim” which gives information about any issues with the evidence your user provided to prove their identity. |
Mar 25 2024 | Remove references to the refresh token and offline_access to simplify integration and the technical flow. |
Feb 14 2024 | New guidance “Choose your sector identifier” to explain the use of the sector identifier with a worked example that shows the effect of choosing different sector identifiers. |
Dec 22 2023 | Updated guidance on making a request to the /authorize endpoint. |
Dec 21 2023 | New guidance “Secure your authorisation request parameters with JWT” using a JWT-secured OAuth 2.0 authorisation request (JAR) to improve the security of your integration and protect against tampering. |
Oct 31 2023 | New guidance “Before you integrate with GOV.UK One Login”. |
This page was last reviewed on 3 April 2023.