What is oidc
Last updated: April 1, 2026
Key Facts
- OIDC is built on top of OAuth 2.0 authorization framework
- It provides authentication, not just authorization like OAuth 2.0
- OIDC uses ID tokens that contain user identity information
- It supports single sign-on (SSO) across multiple applications
- OIDC is an open standard maintained by the OpenID Foundation
Overview
OpenID Connect (OIDC) is an open authentication standard that extends OAuth 2.0 to include authentication capabilities. While OAuth 2.0 focuses on authorization (granting access to resources), OIDC adds an identity layer that allows applications to verify who users are and obtain their profile information securely.
How OIDC Works
OIDC operates through a series of protocol exchanges between three parties: the user, the application (relying party), and the identity provider. When a user attempts to log in, the application redirects them to the identity provider. After authentication, the identity provider returns an ID token containing user claims and information. The application validates this token and logs the user in, typically creating a session.
Key Components
The main components of OIDC include:
- ID Token: A JSON Web Token (JWT) containing user identity claims
- Access Token: Used to access protected resources on behalf of the user
- Authorization Code: A temporary code exchanged for tokens
- UserInfo Endpoint: Provides additional user profile information
- Discovery Endpoint: Allows applications to discover OIDC provider configuration
Common Use Cases
OIDC is widely used for single sign-on (SSO) scenarios where users can log into multiple applications with one set of credentials. Enterprise organizations use OIDC to centralize authentication. Social login scenarios, where users sign in with Google, Microsoft, or other providers, rely on OIDC standards.
Security Features
OIDC incorporates several security measures including token signing and encryption, authorization code flow with PKCE for mobile applications, and support for multi-factor authentication. The standard defines secure token handling practices and session management guidelines.
Related Questions
What is the difference between OIDC and OAuth 2.0?
OAuth 2.0 is an authorization framework for granting access to resources, while OIDC adds authentication on top of OAuth 2.0. OIDC returns an ID token with user identity information, whereas OAuth 2.0 only handles access tokens for resource authorization.
What is an ID token in OIDC?
An ID token is a JSON Web Token (JWT) issued by the identity provider containing claims about the user's identity, such as their name, email, and subject identifier. It is cryptographically signed and allows the application to verify the user's identity.
Which companies support OIDC authentication?
Major technology companies including Google, Microsoft, Amazon, Apple, and Okta support OIDC. Most enterprise identity providers and social login platforms have adopted OIDC as their standard authentication protocol.
More What Is in Daily Life
- What Is a Credit ScoreA credit score is a three-digit number, typically ranging from 300 to 850, that represents your cred…
- What Is CD rates make no sense based on length of time invested. Explain like I'm 5CD (Certificate of Deposit) rates often don't increase with longer lock-up times the way people expe…
- What is a phdA PhD (Doctor of Philosophy) is a doctoral degree earned after completing advanced academic research…
- What is a polymathA polymath is a person with deep knowledge and expertise across multiple different fields or academi…
- What is aaveAAVE stands for African American Vernacular English, a dialect with distinct grammar, pronunciation,…
- What is aarch64ARMv8-A (commonly called ARM64 or AArch64) is a 64-bit processor architecture developed by ARM Holdi…
- What is about menTopics and discussions about men typically encompass masculinity, male identity, gender roles, men's…
- What is abiturAbitur is the German academic qualification awarded upon completion of secondary education, typicall…
- What is abrosexualAbrosexual is a sexual orientation identity where a person's sexual attraction changes or fluctuates…
- What is abgABG is an Indonesian acronym standing for 'Anak Baru Gede,' which refers to adolescent girls or teen…
- What is aaaAAA batteries are a standard cylindrical battery size measuring 10.5mm in diameter and 44.5mm in len…
- What is aacAAC (Advanced Audio Codec) is a digital audio compression format that provides better sound quality …
- What is aaa gameAAA games are high-budget video games developed by large studios with budgets typically exceeding $1…
- What is a proxyA proxy is a server that acts as an intermediary between your device and the internet, forwarding yo…
- What is ableismAbleism is discrimination and prejudice against people with disabilities based on the assumption tha…
- What is absAbs, short for abdominal muscles, are the muscles in your core that flex your spine and stabilize yo…
- What is abortionAbortion is a medical procedure that ends pregnancy by removing the fetus before viability. It can b…
- What is accutaneAccutane (isotretinoin) is a powerful prescription medication derived from vitamin A used to treat s…
- What is acetaminophenAcetaminophen, also known as paracetamol, is an over-the-counter pain reliever and fever reducer use…
- What is acidAcid is a chemical substance that donates protons (hydrogen ions) to other substances, characterized…
Also in Daily Life
- How To Save Money
- Why are so many white supremacist and right wings grifters not white
- Does "I'm 20 out" mean youre 20 minutes away from where you left, or youre 20 minutes away from your destination
- Why are so many men convinced that they are ugly
- What does awol mean
- What does asl mean
- What does ad mean
- What does asap mean
- What does apex mean
- What does asmr stand for
- What does atp mean
- What causes autism
- What does abg mean
- What does am and pm mean
- What does a fox sound like
More "What Is" Questions
Trending on WhatAnswer
Browse by Topic
Browse by Question Type
Sources
- OpenID Connect Official Website CC-BY-4.0
- Wikipedia - OpenID CC-BY-SA-4.0