Jul 6, 2009 · I'm really trying to understand the difference between OpenID and OAuth? Maybe they're two totally separate things?

Aug 9, 2017 · I am a little curious to know about how OpenID authentication works. Is there any difference between OpenID authentication and the authentication which sites use exclusively …

Feb 10, 2025 · -1 i requested scopes openid, email separately and get an id token, in response of the oauth2.0 process and can decode it to retrieve user email While if i have openid scope …

Jan 13, 2021 · I want to host my own openid-configuration discovery file. Since this file is served while running the OIDC workflow I want to verify what is the correct way to host this file.

Oct 8, 2011 · With OpenID, a user login is usually an HTTP address of the resource which is responsible for the authentication. On the other hand, SAML is based on an explicit trust …

Oct 20, 2017 · OAuth 2.0 defines "state" parameter to be sent in request by client to prevent cross-site request attacks. Same is mentioned in OpenID spec for "nonce". Apart from the fact …

Apr 4, 2025 · I get a 404 from the browser on my OpenID callback URI after authentication as if it's supposed to be a static file. The one I have registered is along the lines of …

May 21, 2016 · 8 When you make the first request to the authorization endpoint, you have to include openid in the scope request parameter. OpenID Connect Core 1.0, 3.1.2.1. …

Feb 13, 2025 · Most of my experience with OpenId Connect relates to web applications with a secure back-end that can utilise the Authorisation Code Flow with a client-secret. That is, …

Feb 22, 2015 · We are not interested in using Keycloak's own client library, we want to use standard OAuth2 / OpenID Connect client libraries, as the client applications using the …