OpenID Connect

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.^[1] The standard is controlled by the OpenID Foundation.

Description

OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.^[1]

Open source providers

There are several open source implementations of OpenID Connect providers, including:

References

^ ^a ^b "OpenID Connect". OpenID Foundation. Retrieved 2016-04-18.
^ "An OpenID Connect reference implementation in Java on the Spring platform.: mitreid-connect/OpenID-Connect-Java-Spring-Server". July 2, 2019 – via GitHub.
^ "OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors: dexidp/dex". July 5, 2019 – via GitHub.
^ "Ipsilon". ipsilon-project.org.
^ "IdentityServer4". July 18, 2019.
^ "oidc-provider". Nov 29, 2019 – via GitHub.

External links

[//openid.net/connect-1] "OpenID Connect". OpenID Foundation. Retrieved 2016-04-18.

[2] "An OpenID Connect reference implementation in Java on the Spring platform.: mitreid-connect/OpenID-Connect-Java-Spring-Server". July 2, 2019 – via GitHub.

[3] "OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors: dexidp/dex". July 5, 2019 – via GitHub.

[4] "Ipsilon". ipsilon-project.org.

[5] "IdentityServer4". July 18, 2019.

[6] "oidc-provider". Nov 29, 2019 – via GitHub.

[1]

[2]

[3]

[4]

[5]

[6]

v t e Authentication
Authentication APIs	BSD Authentication (BSD Auth) eAuthentication (eAuth) Generic Security Services API (GSSAPI) Java Authentication and Authorization Service (JAAS) Pluggable Authentication Modules (PAM) Simple Authentication and Security Layer (SASL) Security Support Provider Interface (SSPI) XCert Universal Database API (XUDA)
Authentication protocols	ACF2 Authentication and Key Agreement (AKA) CAVE-based authentication Challenge-Handshake Authentication Protocol (CHAP) MS-CHAP Central Authentication Service (CAS) CRAM-MD5 Diameter Extensible Authentication Protocol (EAP) Host Identity Protocol (HIP) IndieAuth Kerberos LAN Manager NT LAN Manager (NTLM) OAuth OpenID OpenID Connect (OIDC) Password-authenticated key agreement protocols Password Authentication Protocol (PAP) Protected Extensible Authentication Protocol (PEAP) Remote Access Dial In User Service (RADIUS) Resource Access Control Facility (RACF) Secure Remote Password protocol (SRP) TACACS Woo–Lam
Category Commons

Description

Open source providers

See also

References

External links