OpenID Connect
E184249
OpenID Connect is an identity layer built on top of OAuth 2.0 that enables secure user authentication and single sign-on across applications.
All labels observed (2)
| Label | Occurrences |
|---|---|
| OpenID Connect canonical | 13 |
| OpenID Connect Core | 1 |
Statements (58)
| Predicate | Object |
|---|---|
| instanceOf |
authentication protocol
ⓘ
identity layer ⓘ open standard ⓘ |
| builtOn | OAuth 2.0 ⓘ |
| defines |
Discovery Endpoint
ⓘ
Dynamic Client Registration ⓘ ID Token ⓘ UserInfo Endpoint ⓘ standard claims ⓘ standard scopes ⓘ |
| enables | delegated authentication ⓘ |
| hasClaim |
email
ⓘ
email_verified ⓘ family_name ⓘ given_name ⓘ locale ⓘ name ⓘ picture ⓘ preferred_username ⓘ sub ⓘ updated_at ⓘ |
| hasScope |
address
ⓘ
email ⓘ offline_access ⓘ openid ⓘ phone ⓘ profile ⓘ |
| introduced | 2014 ⓘ |
| relatedStandard |
JSON Web Encryption
ⓘ
JSON Web Signature ⓘ JSON Web Tokens (JWT) ⓘ
surface form:
JSON Web Token
OAuth 2.0 ⓘ |
| replaces | OpenID 2.0 ⓘ |
| securityProperty |
supports bearer tokens
ⓘ
supports token encryption ⓘ supports token signature validation ⓘ |
| standardizedBy | OpenID Foundation ⓘ |
| supports |
back-channel logout
ⓘ
federated identity ⓘ front-channel logout ⓘ session management ⓘ single sign-on ⓘ user authentication ⓘ |
| supportsFlow |
authorization code flow
ⓘ
hybrid flow ⓘ implicit flow ⓘ |
| usedFor |
API authentication
ⓘ
mobile applications ⓘ single-page applications ⓘ web applications ⓘ |
| uses |
HTTPS
ⓘ
JSON ⓘ JSON Web Tokens (JWT) ⓘ
surface form:
JSON Web Token
REST API ⓘ
surface form:
REST
authorization endpoint ⓘ jwks_uri ⓘ token endpoint ⓘ userinfo endpoint ⓘ |
Referenced by (14)
Full triples — surface form annotated when it differs from this entity's canonical label.
this entity surface form:
OpenID Connect Core
subject surface form:
JSON Web Token