OpenID Connect

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.^[1] The standard is controlled by the OpenID Foundation.

Description

OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of kinds of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.^[1]

Open source providers

There are several open source implementations of OpenID Connect providers, including:

References

^ ^a ^b "Welcome to OpenID Connect". OpenID Foundation. Archived from the original on 2019-12-12. Retrieved 2019-12-13.
^ An OpenID Connect reference implementation in Java on the Spring platform. on GitHub
^ OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors on GitHub
^ "Ipsilon - Identity Provider server and toolkit". Archived from the original on 2020-06-29. Retrieved 2020-06-29.
^ OpenID Connect and OAuth 2.0 Framework for ASP.NET Core on GitHub
^ "Keycloak". Archived from the original on 2020-06-29. Retrieved 2020-06-29. {{cite web}}: |archive-date= / |archive-url= timestamp mismatch; 2020-06-26 suggested (help)
^ OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js on GitHub
^ OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go on GitHub
^ WSO2 Identity Server is an open source Identity and Access Management solution federating and managing identities across both enterprise and cloud service environments on GitHub

External links

[OIDC_welcome-1] "Welcome to OpenID Connect". OpenID Foundation. Archived from the original on 2019-12-12. Retrieved 2019-12-13.

[2] An OpenID Connect reference implementation in Java on the Spring platform. on GitHub

[3] OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors on GitHub

[Ipsilon-4] "Ipsilon - Identity Provider server and toolkit". Archived from the original on 2020-06-29. Retrieved 2020-06-29.

[5] OpenID Connect and OAuth 2.0 Framework for ASP.NET Core on GitHub

[Keycloak-6] "Keycloak". Archived from the original on 2020-06-29. Retrieved 2020-06-29. {{cite web}}: |archive-date= / |archive-url= timestamp mismatch; 2020-06-26 suggested (help)

[7] OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js on GitHub

[8] OAuth2 Server and OpenID Certified™ OpenID Connect Provider written in Go on GitHub

[9] WSO2 Identity Server is an open source Identity and Access Management solution federating and managing identities across both enterprise and cloud service environments on GitHub

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

v t e Authentication
Authentication APIs	BSD Authentication (BSD Auth) eAuthentication (eAuth) Generic Security Services API (GSSAPI) Java Authentication and Authorization Service (JAAS) Pluggable Authentication Modules (PAM) Simple Authentication and Security Layer (SASL) Security Support Provider Interface (SSPI) XCert Universal Database API (XUDA)
Authentication protocols	ACF2 Authentication and Key Agreement (AKA) CAVE-based authentication Challenge-Handshake Authentication Protocol (CHAP) MS-CHAP Central Authentication Service (CAS) CRAM-MD5 Diameter Extensible Authentication Protocol (EAP) Host Identity Protocol (HIP) IndieAuth Kerberos LAN Manager NT LAN Manager (NTLM) OAuth OpenID OpenID Connect (OIDC) Password-authenticated key agreement protocols Password Authentication Protocol (PAP) Protected Extensible Authentication Protocol (PEAP) Remote Access Dial In User Service (RADIUS) Resource Access Control Facility (RACF) Secure Remote Password protocol (SRP) TACACS Woo–Lam
Category Commons

Description

Open source providers

See also

References

External links