OpenID Connect is an identity layer on top of the OAuth 2.0 protocol.

While OAuth 2 is usable for authorization only, OpenID Connect extends it and allows clients to verify the identity of the resource owner.

OpenID scope

All authorization requests that wants to use OpenID Connect must use openid scope.

Access Token with openid scope can be used to verify the resource owner.

More features

OpenID Connect has more features that just standart scope, such as Discovery endpoint for clients to recieve all needed information about authorization server.