OpenID介绍
OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.
OpenID Connect 1.0是一个简单的身份层,位于OAuth 2.0协议之上。它允许客户端基于授权服务器执行的身份验证来验证最终用户的身份,并以一种可互操作的、类似rest的方式获取关于最终用户的基本概要信息。
OpenID Connect allows clients of all types, including Web-based, mobile, and JavaScript clients, to request and receive information about authenticated sessions and end-users. The specification suite is extensible, allowing participants to use optional features such as encryption of identity data, discovery of OpenID Providers, and session management, when it makes sense for them.
OpenID Connect允许所有类型的客户机(包括基于web的、移动的和JavaScript客户机)请求和接收关于经过身份验证的会话和最终用户的信息。规范套件是可扩展的,允许参与者在对他们有意义时使用可选特性,如身份数据加密、OpenID提供者的发现和会话管理。
这里需要注意OpenID是验证最终用户的身份,称之为认证。
OpenID官网
点击查看详情.
Oauth2规范说明
点击查看详情.