Complete Guide to OpenID Connect (OIDC)

OpenID Connect (OIDC) allows users to authenticate and authorize their identities across different applications and services.



Overview

OpenID Connect (OIDC) is an open standard and identity layer built on top of OAuth 2.0, designed to enable secure and standardized authentication and authorization. It provides a framework to verify the identity of end-users, obtain their basic profile information, and establish a session for subsequent interactions. OIDC facilitates single sign-on (SSO) capabilities, allowing users to authenticate once and access multiple applications seamlessly. It utilizes JSON Web Tokens (JWTs) to transmit identity and authorization information securely between the involved parties.


Requirements

In order for an OIDC provider to work with the Gigantik platform, it needs to support the following from the OIDC specifications:

  • Implicit flow
  • response_type=code+id_token
  • response_mode=form_post
  • scope=openid+email

The table below provides a summary of some common OIDC providers and their compatibility with the Gigantik platform: