OpenID Connect

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.^[1] The standard is controlled by the OpenID Foundation.

Description

OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.^[1]

Open source providers

There are several open source implementations of OpenID Connect providers, including:

MITREid Connect from MIT^{[openid connect 1]}
Dex Identity Provider^[2]
Ipsilon^[3]
IdentityServer4^[4]
Keycloak^[5]
oidc-provider^[6]

References

^ ^a ^b "Welcome to OpenID Connect". OpenID Foundation. Retrieved 2019-12-13.
^ OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors on GitHub
^ "Ipsilon - Identity Provider server and toolkit".
^ OpenID Connect and OAuth 2.0 Framework for ASP.NET Core on GitHub
^ "Keycloak - Open Source Identity and Access Management For Modern Applications and Services".
^ OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js on GitHub

External links

Cite error: There are <ref group=openid connect> tags on this page, but the references will not show without a {{reflist|group=openid connect}} template (see the help page).

[//openid.net/connect-1] "Welcome to OpenID Connect". OpenID Foundation. Retrieved 2019-12-13.

[3] OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors on GitHub

[4] "Ipsilon - Identity Provider server and toolkit".

[5] OpenID Connect and OAuth 2.0 Framework for ASP.NET Core on GitHub

[6] "Keycloak - Open Source Identity and Access Management For Modern Applications and Services".

[7] OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js on GitHub

[1]

[openid connect 1]

[2]

[3]

[4]

[5]

[6]

v t e Authentication
Authentication APIs	BSD Authentication (BSD Auth) eAuthentication (eAuth) Generic Security Services API (GSSAPI) Java Authentication and Authorization Service (JAAS) Pluggable Authentication Modules (PAM) Simple Authentication and Security Layer (SASL) Security Support Provider Interface (SSPI) XCert Universal Database API (XUDA)
Authentication protocols	ACF2 Authentication and Key Agreement (AKA) CAVE-based authentication Challenge-Handshake Authentication Protocol (CHAP) MS-CHAP Central Authentication Service (CAS) CRAM-MD5 Diameter Extensible Authentication Protocol (EAP) Host Identity Protocol (HIP) IndieAuth Kerberos LAN Manager NT LAN Manager (NTLM) OAuth OpenID OpenID Connect (OIDC) Password-authenticated key agreement protocols Password Authentication Protocol (PAP) Protected Extensible Authentication Protocol (PEAP) Remote Access Dial In User Service (RADIUS) Resource Access Control Facility (RACF) Secure Remote Password protocol (SRP) TACACS Woo–Lam
Category Commons

Description

Open source providers

See also

References

External links