https://github.com/paulveillard/cybersecurity-openid

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about OpenID in Cybersecurity.
https://github.com/paulveillard/cybersecurity-openid

openid openid-client openid-connect openid-provider openid-server

Last synced: about 9 hours ago
JSON representation

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about OpenID in Cybersecurity.

• Host: GitHub
• URL: https://github.com/paulveillard/cybersecurity-openid
• Owner: paulveillard
• License: mit
• Created: 2022-08-01T19:25:37.000Z (almost 3 years ago)
• Default Branch: main
• Last Pushed: 2022-08-28T19:39:09.000Z (almost 3 years ago)
• Last Synced: 2025-03-28T12:12:50.276Z (3 months ago)
• Topics: openid, openid-client, openid-connect, openid-provider, openid-server
• Language: Python
• Homepage:
• Size: 448 KB
• Stars: 2
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Contributing: contributing.md
  • License: LICENSE
  • Code of conduct: code-of-conduct.md

Awesome Lists containing this project

README

        
# Open ID

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about OpenID in Cybersecurity.

> Thanks to all contributors, you're awesome and wouldn't be possible without you! Our goal is to build a categorized community-driven collection of very well-known resources

## What is OpenID Connect?

![openid](https://github.com/paulveillard/cybersecurity-openid/blob/main/img/OpenID_logo_2.png)

OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.

OpenID Connect allows clients of all types, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, allowing participants to use optional features such as encryption of identity data, discovery of OpenID Providers, and session management, when it makes sense for them.

See https://openid.net/connect/faq/ for a set of answers to Frequently Asked Questions about OpenID Connect.

## How is OpenID Connect different than OpenID 2.0?

![openid-connect](https://github.com/paulveillard/cybersecurity-openid/blob/main/img/oidc_protocol_suite.png)

OpenID Connect performs many of the same tasks as OpenID 2.0, but does so in a way that is API-friendly, and usable by native and mobile applications. OpenID Connect defines optional mechanisms for robust signing and encryption. Whereas integration of OAuth 1.0a and OpenID 2.0 required an extension, in OpenID Connect, OAuth 2.0 capabilities are integrated with the protocol itself.

- https://openid.net/connect/