.Nat Zone

Digital Identity et al.

「 OpenID Connect 」 一覧

The relationship between endpoint responses and response_type, scope pair

So it seems there is a little bit of confusion around what needs to be returned from which endpoint among the readers of OpenID Connect specification. It actually is pretty clear if you understand what OAuth 2.0 response_type parameter is, …

no image

Approve OpenID Connect Implementer’s Drafts!

  2012/02/08    identity, OpenID Connect

Hi. OpenID Conenct Implementer’s Draft voting has finally started. We had a technical problem that delayed the start of the voting almost 23 hours, but as promised, we have started it on the Feb. 7, PST![1] So here it goes! …

no image

Scopes and Claims in OpenID Connect

In OpenID Connect, there are notions of “scopes” and “claims”. Some people see some overlap there and wonders why they are like that. Here is my attempt to explain the relationship between the two. OpenID Connect defined scopes OpenID Connect …

no image

OpenID Connect in a nutshell

When you read the OpenID Connect Specifications, you might feel a little bit intimidated. That’s because they are written in “spec language” and they deal with corner cases, etc.  Yet when you translate them into normal English and just concentrate on a “simple case”, it …

Fig.3 OpenID Connect Authentication

Dummy’s guide for the Difference between OAuth Authentication and OpenID

  2011/05/15    identity, OpenID Connect

Many people say that “OpenID is Authentication and OAuth is Authorization.” However, people often mis-understand the phrase. Such phrase like “OpenID is dead. OAuth authentication is better” depicts it well. So, today, I would like to think a bit on …