openid-connect.md

July 15, 2021 · View on GitHub

Bookmarks tagged [openid-connect]

www.codever.land/bookmarks/t/openid-connect

Examples of offline token usage in Keycloak - JANUA

https://www.janua.fr/examples-of-offline-token-usage-in-keycloak/

In this article we share examples of offline token usage in Keycloa


IdentityModel/oidc-client-js

https://github.com/IdentityModel/oidc-client-js/

OpenID Connect (OIDC) and OAuth2 protocol support for browser-based JavaScript applications


RFC 7636 - Proof Key for Code Exchange by OAuth Public Clients

https://tools.ietf.org/html/rfc7636

OAuth 2.0 public clients utilizing the Authorization Code Grant are susceptible to the authorization code interception attack. This specification describes the attack as well as a technique to...


GitHub - panva/node-openid-client

https://github.com/panva/node-openid-client

OpenID Certified™ Relying Party (RP, Client) implementation for Node.js. Wide feature coverage including optional specifications and passport strategy is included. - panva/node-openid-client


OAuth 2.0 and OpenID Connect (in plain English) - YouTube

https://www.youtube.com/watch?v=996OiexHze0

Developer Advocate Nate Barbettini breaks down OpenID and OAuth 2.0 in Plain English Find Nate's slides here: [https://speakerdeck.com/nbarbettini/oauth-and-openid-connect-in-plain-english](https://sp...


Build Reactive APIs with Spring WebFlux

https://developer.okta.com/blog/2018/09/24/reactive-apis-with-spring-webflux#secure-your-spring-webf...

You've heard that reactive programming can help you scale? But how do you implement it? Using Spring WebFlux, of course! This article shows you how.


Identity, Claims, & Tokens – An OpenID Connect Primer, Part 1 of 3

https://developer.okta.com/blog/2017/07/25/oidc-primer-part-1

In this post, we learned some basics about OpenID Connect, its history, and a bit about the various flow types, scopes, and tokens involved.


OpenID Connect Scopes

https://auth0.com/docs/scopes/current/oidc-scopes

Understand scopes and claims used with the OpenID Connect (OIDC) protocol.


Understanding ID Token

https://medium.com/@darutk/understanding-id-token-5f83f50fa02e

From an engineer's point of view, an abstract explanation like “ID Token is a token issued as a result of user authentication” is not so valuable because engineers cannot imagine how to implement ID T...


Welcome to OpenID Connect – OpenID Homepage

https://openid.net/connect/

OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Serve...


The Nuts and Bolts of API Security: Protecting Your Data at All Times - YouTube

https://www.youtube.com/watch?v=tj03NRM6SP8

Nice introduction (just introduction) to oauth, openid-connect, possible use for securing microservices...


Understanding Refresh Tokens - Auth0

https://auth0.com/learn/refresh-tokens/

A Refresh Token is a special kind of token that can be used to obtain a renewed access token —that allows accessing a protected resource— at any time. You can request new access tokens until the r...


OpenID Connect

https://auth0.com/docs/protocols/oidc

What is the OpenID Connect protocol and how it works.


Final: OpenID Connect Core 1.0 incorporating errata set 1

https://openid.net/specs/openid-connect-core-1_0.html

Abstract

OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It enables Clients to verify the identity of the End-User based on the authentication performed by an A...


OpenID Connect explained | Connect2id

https://connect2id.com/learn/openid-connect

OpenID Connect is the new emerging standard for single sign-on and identity provision on the internet. Its formula for success: simple JSON-based identity tokens (JWT), delivered via the OAuth 2.0 pro...