From 009c445c8d98dd8e6d83aa1407ee41c501e2d568 Mon Sep 17 00:00:00 2001 From: Lars Wirzenius Date: Sat, 25 Apr 2020 10:27:45 +0300 Subject: Drop: HTML --- yuck.html | 67 --------------------------------------------------------------- 1 file changed, 67 deletions(-) delete mode 100644 yuck.html diff --git a/yuck.html b/yuck.html deleted file mode 100644 index 6074c8f..0000000 --- a/yuck.html +++ /dev/null @@ -1,67 +0,0 @@ - - - - - - - Yuck or OIDC - - - -
-

Yuck or OIDC

-

2020-04-25 10:16

-
- -

1 Overview

-

1.1 Concepts

-

Some basic concepts in this document:

- -

1.2 The protocols: OAuth 2.0 and OpenID Connect

-

The OAuth 2.0 protocol is for authorization, not authentication, and assumes an already existing way to authenticate users. It’s mainly for giving a service or application permission to do something on your behalf.

-

The OpenID Connect (OIDC) protocol is for authenticating yourself to one service or application by using a third party service. This allows one authentication service (or identity provider) be used for any number of other services or applications. Further, since the identity provider can keep a login session open independently of the other services and applications, this provides a single sign-on experience.

-

1.3 Entities involved in the protocols

-

The protocols involves the following entities:

- -

2 OIDC protocol

-

This augments the plain OIDC with cookies:

- -

2.1 Successful resource access by a logged-out user

-

-

2.2 Successful resource access by a logged-in user

-

- -

- - -- cgit v1.2.1