OpenID Connect is an interoperable authentication protocol based on the OAuth 2.0 family of specifications. It uses straightforward REST/JSON message flows with a design goal of “making simple things simple and complicated things possible”. It’s uniquely easy for developers to integrate, compared to any preceding Identity protocol. It lets developers authenticate their users across websites and apps without having to own and manage password files. It allows clients of all types, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, allowing participants to use optional features such as encryption of identity data, the discovery of OpenID Providers, and session management, when it makes sense for them.
OAuth 2.0, is a framework, specified by the IETF in RFCs 6749 and 6750 designed to support the development of authentication and authorization protocols. It provides a variety of standardized message flows based on JSON and HTTP; OpenID Connect uses these to provide Identity services.
LoginRadius is not only an active member of the OpenID Foundation but also certified by the standard. LoginRadius Platform is built using the OpenID protocol standards and follows the OAuth 2.0 framework to meet security guidelines for OpenID Connect. LoginRadius follows the process of OpenID Connect that defines mechanisms for robust signing and encryption for the REST-APIs. OpenID Foundation members include leading companies and individuals in the digital identity industry. The sponsor members are critical contributors to the success of our mission through funding and the active participation of their employees and affiliates.
