OpenID Connect

From Wikipedia, the free encyclopedia
Jump to: navigation, search

OpenID Connect (OIDC) is an authentication layer on top of OAuth 2.0, an authorization framework.[1] The standard is controlled by the OpenID Foundation.


OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

OpenID Connect allows a range of clients, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as encryption of identity data, discovery of OpenID Providers, and session management.[1]


Organizations that have started to use OpenID Connect include Auth0[2], ForgeRock, Gigya,[3] 10Duke,[4] Amazon, Steam, [5] Centrify,[6] the Chilean government,[7] Deutsche Telekom,[8] Google,[9] IBM,[10] Janrain,[11] Microsoft,[12] Okta,[13] OneLogin,[14] Ping Identity,[15] Salesforce,[16] The Nomura Research Institute of Japan,[17] VMware,[18] General Electric, and i-Sprint Innovations.[19]

See also[edit]


  1. ^ a b "OpenID Connect". OpenID Foundation. Retrieved 2016-04-18. 
  2. ^ Auth0 OpenID Connect Protocol Reference
  3. ^ OpenID Connect
  4. ^ 10Duke Identity Provider, Retrieved 25 July 2016.
  5. ^ OpenID Connect Support for Amazon Cognito, 2014, Jeff Barr, Retrieved 25 July 2016.
  6. ^ Custom OpenID Connect applications, Retrieved 25 July 2016.
  7. ^ OpenID Connect en ClaveÚnica, 2016,
  8. ^ OpenID Connect @ Deutsche Telekom, 2014, Dr. Torsten Lodderstedt, Retrieved 25 July 2016.
  9. ^ OpenID Connect, 2016, Retrieved 25 July 2016.
  10. ^ OpenID Connect, 2016, Retrieved 25 July 2016.
  11. ^ "Janrain Supports OpenID Connect". 
  12. ^ OpenID Connect and OAuth 2.0 support in Azure Active Directory has GA’d!, 2014, Alex_Simons, Retrieved 25 July 2016.
  13. ^ OpenID Connect, Retrieved 25 July 2016.
  14. ^ Onelogin Supported Platforms and Standards, 2016, Leif Brown, Retrieved 25 July 2016.
  15. ^ OpenID Connect, Retrieved 25 July 2016.
  16. ^ Inside OpenID Connect on, 2014, Pat Patterson, Retrieved 25 July 2016.
  17. ^ "The OpenID Foundation Launches the OpenID Connect Standard". 
  18. ^ "vmware/lightwave". GitHub. Retrieved 2016-12-01. 
  19. ^ "OpenID Connect(UAM)". Retrieved 2017-04-11. 

External links[edit]