Delete a Login Policy

Endpoint URL: {identityDomain}/{customerId}/config/loginPolicies/{loginPolicyId}


Deletes the specified login policy.

Login policies help manage the user login experience by doing such things as: specifying the exact path to the Capture domain and the user profile entity type, and defining the login URL for the associated directory. All OpenID Connect clients (public and confidential) must be associated with one (but only one) login policy.

Note that you shouldn't delete any login policy currently assigned to an OIDC client; that’s because OIDC clients (or at least the clients used for logins and registrations) must be assigned a login policy. If you want to remove a login policy that's currently assigned to an OIDC client you should first modify the OIDC client and associate it with a different login policy. Only then can the login policy be removed. 

Keep in mind, however, that Hosted Login won't warn you if a login policy is linked to an OIDC client: it will simply delete the policy.

Respects the API Client Allow List: No


This endpoint requires token-based authentication. To obtain an access token, you must use a configuration client (using the client ID as the username and the client secret as the password) to access the /{customerId}/login/token endpoint. The access token returned from the token endpoint is then used in the Authorization header of your API call. For example, if you get back the access token Ki712dpGq5GPQcsxMHY6ShHY7wU_iTs0o9dPx4TEzf5yLIvddjnDVBJxjPDucf5YVB then your Authorization header would look like this when using Curl:

-H 'Authorization: Bearer Ki712dpGq5GPQcsxMHY6ShHY7wU_iTs0o9dPx4TEzf5yLIvddjnDVBJxjPDucf5YVB'

In Postman, set the Authorization Type to Bearer and use the access token as the value of the Token field.

Path Parameters

The path parameters that must be included in the request are listed in the following table:





Unique identifier of the customer associated with the login policy.




Unique identifier of the login policy to be deleted.

Sample Request (Curl)

The following command deletes the login policy with the policy ID d4308c4d-f5d5-403f-bbb4-403dbdb3efe6:

curl -X DELETE \ \
  -H 'Authorization: Bearer Ki712dpGq5GPQcsxMHY6ShHY7wU_iTs0o9dPx4TEzf5yLIvddjnDVBJxjPDucf5YVB'


204 No Content

If your call to this endpoint succeeds, you won't get back an API response. Instead, all you get back is the HTTP response code 204 No Content. You'll see this response even if the login policy being deleted is linked to an OIDC client.