OPENID-CONNECT
Identity layer atop OAuth 2.0.
Definition
OIDC Core 1.0 spec: Authorization Code Flow, Implicit Flow, Hybrid Flow. Signed ID Token (JWT) contains iss, sub, aud, exp, iat, nonce, claims. Standardised endpoints: /authorize, /token, /userinfo, /jwks. OIDC Federation 1.0 published in 2023 for multi-OP federation.
Origin
OpenID Foundation published OIDC Core 1.0 on 26 February 2014.
Example in context
A web app "Login with Google" obtains a Google-signed ID Token JWT containing email + name + sub.
Related terms
- OAuth 2.0 — authorisation parent.