Create OpenID Connect endpoints to more easily enable SSO

Tiedye

• February 03, 2019 18:05

https://auth0.com/docs/protocols/oidc

An example use case is a tournament management site where players can log in with their discord accounts.

25

• 

  Blastoise186

  • February 03, 2019 18:06

  Discord already supports OAuth2.0 which is preferable over OpenID

  -13
• 

  Tiedye

  • February 10, 2019 01:35

  They are not mutually exclusive, OpenID Connect is a wrapper around a particular OAuth2 flow that works well for user authentication and standardizes discovery of the authentication endpoints.

  Implementing OpenID Connect would not be a significant lift as it's just a bit on top of OAuth2, and would allow easy integration with authentication services like Firebase Authentication.

  9
• 

  Upcomer

  • July 05, 2019 20:17

  The same is for AWS Cognito. It supports only OpenID Connect.

  4
• 

  Intensso

  • August 09, 2021 09:45

  This please, it's 2021 and every gaming app is implementing 'Login with Discord' without actually using the oauth2 api. With the current implementation we have to make a request (which is an expensive additional network round trip) every time we want our users to access authenticated resources on our webapps/apps, implementing OpenID would allow us to use Discord public keys to verify id_token without the need of extra network round trips to discord, saving lots of bandwidth and time for all involved actors: discord servers, developer servers and our users time.

  5

Please sign in to leave a comment.