Submit the active LoginUI runtime Flow step.
curl --request POST \ --url https://auth.example.com/api/v1/login/interactions/example/submit \ --header 'Content-Type: application/json' \ --data '{ "step_id": "example", "node_id": "example", "selected_handle": "example", "contract_hash": "example", "signature": "example", "input": { "additionalProperty": "example" } }'Advances the active runtime Flow step after verifying CSRF, interaction state, expiry, contract hash, HMAC signature, and current step identity. Step input is interpreted by the active runtime component; consent-policy input records consent item decisions for the authenticated user.
Parameters
Section titled “ Parameters ”Path Parameters
Section titled “Path Parameters ”Request Body required
Section titled “Request Body required ”object
object
Example generated
{ "step_id": "example", "node_id": "example", "selected_handle": "example", "contract_hash": "example", "signature": "example", "input": { "additionalProperty": "example" }}Responses
Section titled “ Responses ”Updated runtime interaction state and next step.
object
object
object
Runtime completion action, such as complete or continue_protocol.
URL that LoginUI should navigate to after Flow completion.
Protocol-specific continuation metadata for OIDC, SAML, or direct flows.
object
Example generated
{ "schema_version": "example", "interaction": { "additionalProperty": "example" }, "step": "example", "completed": true, "output": { "action": "example", "redirect_url": "example", "protocol_continuation": { "additionalProperty": "example" } }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}Error response.
object
Optional browser-side WebAuthn Signal API hint. When unknown_credential is true, clients that just received a WebAuthn credential assertion may call PublicKeyCredential.signalUnknownCredential() for that credential ID.
object
Example generated
{ "error": "example", "error_description": "example", "message": "example", "webauthn_signal": { "unknown_credential": true }}