OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows the client to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner.
- https://openid.net/connect/
In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format. The standard is controlled by the OpenID_Foundation - wikipedia
OpenID Connect allows a range of kinds of clients, including Web-based, mobile, and JavaScript engine clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, supporting optional features such as: - encryption of identity data - discovery of OpenID Providers, and - session management
# Providers
We ask whether it is possible for wiki to be an OpenID Connect provider for its authors. There are a range of opensource Identity Providers: - https://openid.net/developers/certified/
A cursory scan of these providers and their repositories indicates that the Auth0 supported nodejs implementation looks the most promising for our purposes: - https://www.npmjs.com/package/oidc-provider
# See also