OpenID Connect

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.[1] The standard is controlled by the OpenID Foundation.


OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.[1]

Open source providers[edit]

There are several open source implementations of OpenID Connect providers, including:

See also[edit]


  1. ^ a b "Welcome to OpenID Connect". OpenID Foundation. Retrieved 2019-12-13.
  2. ^ An OpenID Connect reference implementation in Java on the Spring platform. on GitHub
  3. ^ OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors on GitHub
  4. ^ "Ipsilon - Identity Provider server and toolkit".
  5. ^ OpenID Connect and OAuth 2.0 Framework for ASP.NET Core on GitHub
  6. ^ "Keycloak - Open Source Identity and Access Management For Modern Applications and Services".
  7. ^ OpenID Certified™ OAuth 2.0 Authorization Server implementation for Node.js on GitHub

External links[edit]