diff --git a/backend/data/src/main/resources/db/changelog/schema.xml b/backend/data/src/main/resources/db/changelog/schema.xml
index ba18279603..f6bd1eba81 100644
--- a/backend/data/src/main/resources/db/changelog/schema.xml
+++ b/backend/data/src/main/resources/db/changelog/schema.xml
@@ -3933,4 +3933,35 @@
     <changeSet author="anty (generated)" id="1731342594097-8">
         <addForeignKeyConstraint baseColumnNames="organization_id" baseTableName="tenant" constraintName="FKti8pr42oxjua5ym5d0mdpk2i0" deferrable="false" initiallyDeferred="false" referencedColumnNames="id" referencedTableName="organization" validate="true"/>
     </changeSet>
+    <changeSet author="huglx (generated)" id="1731016327313-1">
+        <createTable tableName="auth_provider_change_request">
+            <column name="id" type="BIGINT">
+                <constraints nullable="false" primaryKey="true" primaryKeyName="auth_provider_change_requestPK"/>
+            </column>
+            <column name="created_at" type="TIMESTAMP(6) WITHOUT TIME ZONE">
+                <constraints nullable="false"/>
+            </column>
+            <column name="updated_at" type="TIMESTAMP(6) WITHOUT TIME ZONE">
+                <constraints nullable="false"/>
+            </column>
+            <column name="is_confirmed" type="BOOLEAN">
+                <constraints nullable="false"/>
+            </column>
+            <column name="new_account_type" type="SMALLINT"/>
+            <column name="new_auth_provider" type="VARCHAR(255)"/>
+            <column name="new_sso_domain" type="VARCHAR(255)"/>
+            <column name="new_sub" type="VARCHAR(255)"/>
+            <column name="old_account_type" type="SMALLINT"/>
+            <column name="old_auth_provider" type="VARCHAR(255)"/>
+            <column name="sso_expiration" type="TIMESTAMP(6) WITHOUT TIME ZONE"/>
+            <column name="sso_refresh_token" type="TEXT"/>
+            <column name="user_account_id" type="BIGINT"/>
+        </createTable>
+    </changeSet>
+    <changeSet author="huglx (generated)" id="1731016327313-2">
+        <addUniqueConstraint columnNames="user_account_id" constraintName="UC_AUTH_PROVIDER_CHANGE_REQUESTUSER_ACCOUNT_ID_COL" tableName="auth_provider_change_request"/>
+    </changeSet>
+    <changeSet author="huglx (generated)" id="1731016327313-3">
+        <addForeignKeyConstraint baseColumnNames="user_account_id" baseTableName="auth_provider_change_request" constraintName="FKo6db96l21g8a86a9c0t50x32x" deferrable="false" initiallyDeferred="false" referencedColumnNames="id" referencedTableName="user_account" validate="true"/>
+    </changeSet>
 </databaseChangeLog>
diff --git a/webapp/src/service/apiSchema.generated.ts b/webapp/src/service/apiSchema.generated.ts
index 94756baeb3..c24a5caa9e 100644
--- a/webapp/src/service/apiSchema.generated.ts
+++ b/webapp/src/service/apiSchema.generated.ts
@@ -576,6 +576,9 @@ export interface paths {
   "/api/public/generatetoken": {
     post: operations["authenticateUser"];
   };
+  "/api/public/auth-provider/request-change": {
+    post: operations["submitOrCancelAuthProviderChangeRequest"];
+  };
   "/api/public/authorize_oauth/sso/authentication-url": {
     post: operations["getAuthenticationUrl"];
   };
@@ -868,6 +871,9 @@ export interface paths {
     /** Authenticates user using third party oAuth service */
     get: operations["authenticateUser_1"];
   };
+  "/api/public/auth-provider/get-request": {
+    get: operations["getAuthProviderChangeRequest"];
+  };
   "/api/project/{projectId}/export/jsonZip": {
     /** Exports data as ZIP of jsons */
     get: operations["doExportJsonZip"];
@@ -3587,6 +3593,11 @@ export interface components {
     SsoUrlResponse: {
       redirectUrl: string;
     };
+    AuthProviderChangeRequestDto: {
+      isConfirmed: boolean;
+      /** Format: int64 */
+      changeRequestId: number;
+    };
     CollectionModelSimpleOrganizationModel: {
       _embedded?: {
         organizations?: components["schemas"]["SimpleOrganizationModel"][];
@@ -4725,6 +4736,14 @@ export interface components {
       deleted: boolean;
       disabled: boolean;
     };
+    AuthProviderChangeResponseDto: {
+      newAuthType?: string;
+      oldAuthType?: string;
+      newAccountType?: string;
+      /** Format: int64 */
+      userId?: number;
+      oldAccountType?: string;
+    };
     UserTotpDisableRequestDto: {
       password: string;
     };
@@ -14501,6 +14520,49 @@ export interface operations {
       };
     };
   };
+  submitOrCancelAuthProviderChangeRequest: {
+    responses: {
+      /** OK */
+      200: unknown;
+      /** Bad Request */
+      400: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Unauthorized */
+      401: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Forbidden */
+      403: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Not Found */
+      404: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+    };
+    requestBody: {
+      content: {
+        "application/json": components["schemas"]["AuthProviderChangeRequestDto"];
+      };
+    };
+  };
   /** Returns all organizations owned only by current user */
   getAllSingleOwnedOrganizations: {
     responses: {
@@ -18499,6 +18561,53 @@ export interface operations {
       };
     };
   };
+  getAuthProviderChangeRequest: {
+    parameters: {
+      query: {
+        requestId: number;
+      };
+    };
+    responses: {
+      /** OK */
+      200: {
+        content: {
+          "application/json": components["schemas"]["AuthProviderChangeResponseDto"];
+        };
+      };
+      /** Bad Request */
+      400: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Unauthorized */
+      401: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Forbidden */
+      403: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+      /** Not Found */
+      404: {
+        content: {
+          "application/json":
+            | components["schemas"]["ErrorResponseTyped"]
+            | components["schemas"]["ErrorResponseBody"];
+        };
+      };
+    };
+  };
   /** Exports data as ZIP of jsons */
   doExportJsonZip: {
     parameters: {