Articles by Tag #oidc
Browse our collection of articles on various topics related to IT technologies. Dive in and explore something new!
OpenID Connect Login
I've implemented OpenID Connect (OIDC) login a few times in my career. Two times this year, actually. But I always forget all the steps and details, so I wanted to write them down in this article for future reference. Even if we use a library to manage the majority of those steps, we we can still benefit knowing the details under the hood.
How I Built a Custom Login UI for ZITADEL That Actually Looks Good
Ever tried customizing ZITADEL's default login page and realized you're stuck with their hosted UI? I...
OpenID Connect Dynamic Client Registration 1.0 Deep Dive: Dynamic Client Registration for Automation and Scale
A comprehensive guide to OpenID Connect Dynamic Client Registration 1.0 (based on RFC 7591/7592). Why do we need dynamic registration? We explain its use cases and sequences with easy-to-understand diagrams.
OpenID Connect Core 1.0 Deep Dive: Understanding the "Authentication" Layer on top of OAuth 2.0
Reading through the OIDC Core 1.0 specification with a deep dive into ID Tokens, the 3 Authentication Flows, Claims, UserInfo, and security design.
RFC 6749 Deep Dive: Understanding OAuth 2.0 Design Decisions from the Specification
A line-by-line walkthrough of RFC 6749 covering all Grant Types, endpoints, and security design . Also covers the evolution toward OAuth 2.1.
RFC 8693 Deep Dive: Token Exchange
A comprehensive, illustrated deep dive into RFC 8693 (Token Exchange), the OAuth 2.0 standard for exchanging one token for another, exploring the crucial differences between Impersonation and Delegation.
Replacing Static AWS Credentials in CI/CD with GitHub OIDC (A Practical DevOps Lab)
Storing long‑lived AWS access keys inside CI/CD pipelines is common. It works. It is simple. And it...
OAuth2 vs OpenID Connect: What's the Difference?
OAuth2 and OpenID Connect are often mentioned together, and many developers assume they solve the...
OpenID Connect Discovery 1.0 Deep Dive: OP's "Self-Introduction" and Dynamic Configuration Retrieval
Demystifying OpenID Connect Discovery 1.0: Deep diving into Issuer Discovery using WebFinger and metadata retrieval via /.well-known/openid-configuration.
What Exactly is "Authentication": From the Limits of Passwords to FIDO2, Passkeys, and IdP Architecture
A systematic explanation of the history and mechanisms of "Authentication", covering the transition from passwords to FIDO2, protecting secrets with TPM, and the evolution from LDAP to OIDC and IdPs.
Telegram and the Architectural Shift Toward Access-Layer Authentication
Telegram has introduced a new OpenID Connect-based implementation of Log In with Telegram, aligning...
JWT with OIDC Authentication in Distributed Systems: Building Trust at Scale
When you’re wrangling a distributed system, authentication can feel like herding cats while riding a...
Dependabot OIDC and Google Cloud Artifact Registry: What It Means for Your Software Development Analytics
Dependabot OIDC and Google Cloud Artifact Registry: Navigating the Integration Gap The...
Building Complete OIDC Login Flow URLs in ForgeRock Identity Cloud
OpenID Connect (OIDC) login flow is the process by which users authenticate themselves using OpenID...
OAuth 2.0 Overview: How It Works and Why It Matters
Ever clicked a “Login with Google” button or granted a new photo app permission to access your...
GitHub Actions to AWS OIDC Integration SetuP
Connect GitHub Actions to AWS securely using OIDC, no static credentials needed.
Why your product needs OAuth 2.0 and OIDC — Especially in the AI era
Learn why OAuth 2.0 and OpenID Connect (OIDC) are important for modern authentication, especially in the age of AI, agents, and smart devices. This article covers key use cases, when to implement these protocols, and how to choose the right auth provider for scalability and security.
CoreIdent v0.3.5: OIDC ID Tokens, Real-World Gaps, and What’s Next
CoreIdent is on a mission to make robust, standards-based authentication and identity actually...
OIDC vs SAML – Which Is Better for SSO?
Introduction When it comes to Single Sign-On (SSO), two protocols dominate the landscape:...
SAML vs OIDC: Choosing the Right Identity Protocol for Your App
SAML (Security Assertion Markup Language) and OIDC (OpenID Connect) are two widely-used standards for...
SAML vs OIDC: Choosing the Right Protocol for Secure Authentication
When it comes to secure authentication, two protocols dominate the scene: SAML (Security Assertion...