OpenID Connect
OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.[1] The standard is controlled by the OpenID Foundation.
Description
OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.
OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.[1]
Open Source Providers
There are several Open Source implementations of OpenID connect providers, including:
- MITREid Connect from MIT[2]
- Dex Identity Provider[3]
- Ipsilon[disambiguation needed][4]
- IdentityServer4
Adoption
Organizations that have started to use OpenID Connect include the following:
- Auth0[5]
- Authentiq[6]
- ForgeRock
- Gigya[7]
- 10Duke[8]
- Amazon[9]
- Steam
- Centrify[10]
- The Chilean government[11]
- Deutsche Telekom[12]
- Google[13]
- IBM[14]
- Janrain[15]
- Microsoft[16]
- Okta[17]
- OneLogin[18]
- Ping Identity[19]
- Salesforce[20]
- The Nomura Research Institute of Japan[21]
- VMware[22]
- General Electric
- i-Sprint Innovations[23]
- The Norwegian government.[24]
- cidaas[25]
- Quest- One Identity
- CA Technologies
- Onegini[26]
See also
- Authorization, not to be confused with authentication
- IndieAuth
- OAuth
- OpenID
- SAML 2.0
- WebFinger
- WebID
References
- ^ a b "OpenID Connect". OpenID Foundation. Retrieved 2016-04-18.
- ^ "An OpenID Connect reference implementation in Java on the Spring platform.: mitreid-connect/OpenID-Connect-Java-Spring-Server". July 2, 2019 – via GitHub.
- ^ "OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors: dexidp/dex". July 5, 2019 – via GitHub.
- ^ "Ipsilon". ipsilon-project.org.
- ^ "OpenID Connect". Auth0 Docs.
- ^ "Overview - Authentiq Connect". developers.authentiq.com.
- ^ "OpenID Connect". Developer's Guide.
- ^ 10Duke Identity Provider, 10duke.com. Retrieved 25 July 2016.
- ^ OpenID Connect Support for Amazon Cognito, 2014, Jeff Barr, amazon.com. Retrieved 25 July 2016.
- ^ Custom OpenID Connect applications, centrify.com. Retrieved 25 July 2016.
- ^ OpenID Connect en ClaveÚnica, 2016, claveunica.gob.cl
- ^ OpenID Connect @ Deutsche Telekom, 2014, Dr. Torsten Lodderstedt, gsma.com. Retrieved 25 July 2016.
- ^ OpenID Connect, 2016, google.com. Retrieved 25 July 2016.
- ^ OpenID Connect, 2016, ibm.com. Retrieved 25 July 2016.
- ^ "The Akamai Blog - Akamai". blogs.akamai.com.
- ^ OpenID Connect and OAuth 2.0 support in Azure Active Directory has GA’d!, 2014, Alex_Simons, microsoft.com. Retrieved 25 July 2016.
- ^ OpenID Connect, okta.com. Retrieved 25 July 2016.
- ^ Onelogin Supported Platforms and Standards, 2016, Leif Brown, onelogin.com. Retrieved 25 July 2016.
- ^ OpenID Connect, pingidentity.com. Retrieved 25 July 2016.
- ^ Inside OpenID Connect on Force.com, 2014, Pat Patterson, pingidentity.com. Retrieved 25 July 2016.
- ^ Thibeau, Don. "The OpenID Foundation Launches the OpenID Connect Standard | OpenID".
- ^ "vmware/lightwave". GitHub. Retrieved 2016-12-01.
- ^ "OpenID Connect(UAM)". i-sprint.com. Retrieved 2017-04-11.
- ^ "OpenID Connect i ID-porten | OpenID Connect i ID-porten". difi.github.io.
- ^ "cidaas gets the OpenID certificate". April 26, 2018.
- ^ "OpenID Connect | Onegini Token Server". docs.onegini.com.
External links
| Authentication APIs |
|
|---|---|
| Authentication protocols |
|
