ArticlesGetting StartedHow-tosCode ExamplesDocumentation

Articles

OpenID Connect Single Logout

OpenID Connect Single Logout

Terminate sessions in clients when a user logs out from the Curity Identity Server.

On-Behalf-Of Flow

On-Behalf-Of Flow

What is an on-behalf-of flow, when would you need it and how to implement it in the Curity Identity Server.

OpenID Connect Standards

OpenID Connect Standards

Overview of OpenID Connect standards used by the Curity Identity Server.

Pairwise Pseudonymous Identifiers

Pairwise Pseudonymous Identifiers

Introduction to Pairwise Pseudonymous Identifiers (PPIDs)

Dynamic Client Registration Management

Dynamic Client Registration Management

An overview of how to manage dynamically registered clients

Signed Request Object

Signed Request Object

How to use a Signed Request Object in Authorization Requests.

Dynamic Client Registration

Dynamic Client Registration

Dynamic Client Registration Explained.

Validating an ID Token

Validating an ID Token

How to decode and validate an ID Token.

OpenID Connect Overview

OpenID Connect Overview

Brief overview of the OpenID Connect Standard.

Using Dynamic Client Registration

Using Dynamic Client Registration

Dynamic Client Registration Details.

Videos

OAuth and OpenID Connect - What's next?
Scalable API Security Using OAuth
Financial Grade APIs Using OAuth and OpenID Connect
Securing APIs and Microservices with OAuth and OpenID Connect

OpenID Connect is an identity layer on top of the OAuth authorization standard protocol. It allows for verification of an end user’s identity based on authentication performed by an authorization server. It also allows clients to request and receive information about authenticated sessions and end users. The OpenID Connect is an API friendly specification and also allows for use of optional features such as encryption of identity data, discovery of OpenID Providers, and session management.