The approach I was going to take was to treat a user login to my site as an opportunity to discover the user’s ticket endpoint and proactively send them a ticket. It feels like the lowest-friction approach to me, especially since tickets are already specifically tied to an identity.