OpenID Connect
OpenID Connect is an identity layer on top of the OAuth 2.0 protocol.
While OAuth 2 is usable for authorization only, OpenID Connect extends it and allows clients to verify the identity of the resource owner.
OpenID scope
All authorization requests that wants to use OpenID Connect must use openid scope.
For such request the client should allow the scope too.
Access Token with openid scope can be used to verify the resource owner.
More features
OpenID Connect has more features that just standart scope, such as Discovery endpoint for clients to recieve all needed information about authorization server.
Last updated