OpenID Connect

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.[1] The standard is controlled by the OpenID Foundation.


OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.[1]

Open Source Providers[edit]

There are several Open Source implementations of OpenID connect providers, including a reference implementation from MIT[2], and The Dex Identity Provider[3].


Organizations that have started to use OpenID Connect include Auth0[4], Authentiq[5], ForgeRock, Gigya,[6] 10Duke,[7] Amazon, Steam, [8] Centrify,[9] the Chilean government,[10] Deutsche Telekom,[11] Google,[12] IBM,[13] Janrain,[14] Microsoft,[15] Okta,[16] OneLogin,[17] Ping Identity,[18] Salesforce,[19] the Nomura Research Institute of Japan,[20] VMware,[21] General Electric, i-Sprint Innovations[22], Norwegian government.[23], Cidaas customer identity management[24], Quest- One Identity and Onegini[25]

See also[edit]


  1. ^ a b "OpenID Connect". OpenID Foundation. Retrieved 2016-04-18.
  2. ^ MitreID OIDC IdP Implementation
  3. ^ DEX, an OIDC Provider with Pluggable Connectors
  4. ^ Auth0 OpenID Connect Protocol Reference
  5. ^ Authentiq Developer Documentation
  6. ^ OpenID Connect
  7. ^ 10Duke Identity Provider, Retrieved 25 July 2016.
  8. ^ OpenID Connect Support for Amazon Cognito, 2014, Jeff Barr, Retrieved 25 July 2016.
  9. ^ Custom OpenID Connect applications, Retrieved 25 July 2016.
  10. ^ OpenID Connect en ClaveÚnica, 2016,
  11. ^ OpenID Connect @ Deutsche Telekom, 2014, Dr. Torsten Lodderstedt, Retrieved 25 July 2016.
  12. ^ OpenID Connect, 2016, Retrieved 25 July 2016.
  13. ^ OpenID Connect, 2016, Retrieved 25 July 2016.
  14. ^ "Janrain Supports OpenID Connect".
  15. ^ OpenID Connect and OAuth 2.0 support in Azure Active Directory has GA’d!, 2014, Alex_Simons, Retrieved 25 July 2016.
  16. ^ OpenID Connect, Retrieved 25 July 2016.
  17. ^ Onelogin Supported Platforms and Standards, 2016, Leif Brown, Retrieved 25 July 2016.
  18. ^ OpenID Connect, Retrieved 25 July 2016.
  19. ^ Inside OpenID Connect on, 2014, Pat Patterson, Retrieved 25 July 2016.
  20. ^ "The OpenID Foundation Launches the OpenID Connect Standard".
  21. ^ "vmware/lightwave". GitHub. Retrieved 2016-12-01.
  22. ^ "OpenID Connect(UAM)". Retrieved 2017-04-11.
  23. ^
  24. ^
  25. ^ Onegini OpenID Connect Protocol Reference

External links[edit]