Your suggested change has been received. Thank you.

Suggest A Change

Thank you! Your suggestion has been submitted.

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

There are some errors in your form.

Your Name This field is required

Your Email This field is required

How can we improve this content? This field is required

OneWelcome Identity Platform
- Explore Thales Docs

IDAAS core
User journey orchestration
Consent and preference management
Identity broker
Delegated User Management v2
Externalized authorization
Delegated user management
- Getting started
- Roles
- Rules
- User management
- Self service page
- Data
- APIs
- Apps
- Jobs
- Reports
Risk management
- Essential rules
- Default policies (Essential)
Mobile identity
- Mobile identity - Access component
- Mobile identity - Tulip
Mobile SDK
API references
Release notes and FAQ
Integrations
Identity Orchestrator (IO)

All

All

Add flow

Consent flows

Please Note:

Add flow
Authentication flows
Self-service flows
Admin flows
API flows
Consent flows
Custom flows
Library flows

Was this document helpful? Yes No

Feedback Sent!

If you like, you can provide additional feedback.

OneWelcome Identity Platform
Add flow
Consent flows

Consent flows

Consent flows manage user consent and authorization within the OAuth protocol. They handle the process of requesting, granting, and recording user permissions for accessing protected resources. Consent flows ensure that users explicitly approve the scopes requested by client applications, supporting secure and compliant access control.

Add a consent flow

Open the left sidebar and select Visual Identity Orchestrator from the menu.
This will display a list of flow categories, select Consent.
Press ADD button.
Complete the configuration by following the steps described in the add flow section, starting from step 5.

Consent flow components

Consent request

Display what permissions are being requested:

Clearly explain each scope
Show which data will be accessed
Identify the requesting application
Present risks and implications

User decision

Capture the user's consent decision:

Allow or deny access
Select specific permissions (if granular consent is supported)
Set consent duration or expiration
Option to remember the decision

Consent recording

Store the consent decision:

Record granted scopes
Log timestamp and user identity
Store for compliance and audit
Enable future consent review

Consent revocation

Allow users to revoke previously granted consent:

View active consents
Revoke individual or all consents
Notify affected applications
Clean up associated tokens

Compliance considerations

GDPR requirements

Freely given: Consent must be voluntary
Specific: Clearly define what is being consented to
Informed: Provide complete information
Unambiguous: Use clear, plain language
Revocable: Allow users to withdraw consent easily

Best practices

Use clear, non-technical language
Avoid pre-checked consent boxes
Separate consent requests for different purposes
Provide easy access to privacy policies
Enable granular consent where appropriate

Use cases

OAuth authorization

Client application requesting access to user data
API access on behalf of user
Third-party service integration
Delegated authentication

Data processing consent

Marketing communications
Data sharing with third parties
Analytics and tracking
Profile enrichment

Cookie consent

Essential cookies
Analytics cookies
Marketing cookies
Third-party cookies

Next steps

Custom flows
Library flows
Design flows

On this page

OneWelcome Identity Platform

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com

Support
- Customer Release Notes
- Support Contacts
Legal
- End User License Agreement
- Terms of Service

© Copyright 2019-2026, Thales Group

+1 410-469-1651 supportportal.thalesgroup.com