From http://cakebaker.42dh.com/2008/04/01/openid-versus-oauth-from-the-users-perspective/
In this article I want to show the differences between OpenID and its younger cousin OAuth by providing for each a typical user scenario.
First the scenario for OpenID:
- User wants to access his account on example.com
- example.com (the “Relying Party” in OpenID lingo) asks the user for his OpenID
- User enters his OpenID
- example.com redirects the user to his OpenID provider
- User authenticates himself to the OpenID provider
- OpenID provider redirects the user back to example.com
- example.com allows the user to access his account
And now the scenario for OAuth:
- User is on example.com and wants to import his contacts from mycontacts.com
- example.com (the “Consumer” in OAuth lingo) redirects the user to mycontacts.com (the “Service Provider”)
- User authenticates himself to mycontacts.com (which can happen by using OpenID)
- mycontacts.com asks the user whether he wants to authorize example.com to access his contacts
- User makes his choice
- mycontacts.com redirects the user back to example.com
- example.com retrieves the contacts from mycontacts.com
- example.com informs the user that the import was successful
From those scenarios we can see that OpenID is about authentication (i.e. I can identify myself with an url) whereas OAuth is about authorization (i.e. I can grant permission to access my data on some website to another website, without providing this website the authentication information for the original website).
分享到:
相关推荐
OAuth2 and OpenID Connect in plain English
OAuth 2.0 and OpenID Connect providers. It strives to directly map the requests and responses of those specifications, while following the idiomatic style of the implementation language. In addition ...
This book is intended to be a comprehensive and thorough treatment of the OAuth 2.0 protocol and many of its surrounding technologies, including OpenID Connect and JOSE/JWT. We want you to come away ...
用于ASP.NET Core的IdentityServer4 OpenID Connect和OAuth 2.0框架这是IdentityServer4的主要仓库-还有更多内容:文档咨询,培训和支持示例访问令牌验证用于ASP.NET Core的IdentityServer4 OpenID Connect和OAuth ...
ORY Hydra是经过强化,经过OpenID认证的OAuth 2.0服务器和OpenID Connect提供商,针对低延迟,高吞吐量和低资源消耗进行了优化。 ORY Hydra不是身份提供者(用户注册,用户登录,密码重置流程),而是通过登录和同意...
开源的用于OpenID, OAuth, and ICard 官方最新版
IdentityServer4 is an OpenID Connect and OAuth 2.0 framework for ASP.NET Core.
The jee-pac4j project is an easy and powerful security library for JEE web applications and web services which supports authentication and authorization, but also logout and advanced features like ...
Solving Identity Management in Modern Applications: Demystifying OAuth 2.0, OpenID Connect, and SAML 2.0
议程和幻灯片内容Introduction to the topic IAM - Identity and Access Management and related terminology.Short intro to Keycloak.Setup of the local environment the techlab is based on. OAuth 2.0 incl. ...
OAuth 1.0, 1.0a and 2.0 Superior support for multi-byte Unicode identifiers. Lots of security features 490+ unit tests to verify correctness. Library behind the OSIS OpenID interop testing
The vertx-pac4j project is an easy and powerful security library for Vert.x 3 web applications and web services which supports authentication and authorization, but also application logout and ...
Go的OpenID Connect SDK(客户端和服务器) 该项目处于Alpha状态。 它可以与AND继续中断,直到发布1.0.0版它是什么该项目是针对Go编写的OIDC (开放ID连接)标准的易于使用的客户端和服务器实现。 只要有可能,我们...
微信公众平台最近新推出微信认证,认证后可以获得高级...权威定义:OAuth is An open protocol to allow secure authorization in a simple and standard method from web, mobile and desktop applications. OAuth是一
MaxKey单点登录认证系统,谐音马克思的钥匙寓意是最大钥匙,是业界领先的IAM身份管理和认证产品,支持OAuth 2.x/OpenID Connect、SAML 2.0、JWT、CAS、SCIM等标准协议,提供安全、标准和开放的用户身份管理(IDM)、身份...
FavColor 是一个能够验证 OAuth 2, OpenID COnnect 和 人物角色的演示程序。它通常会生成两个 APKs(“FavColor” and “FC GitKit”)。“FavColor”采用纯 OpenID 连接令牌来鉴别来自服务器的指令,且只适用于谷歌...
•Zend_OpenId •Zend_Paginator •Zend_Pdf •Zend_ProgressBar •Zend_Queue •Zend_Reflection •Zend_Registry •Zend_Rest •Zend_Search_Lucene •Zend_Serializer •Zend_Server •Zend_Service ...
Spring4GWT GWT Spring 使得在 Spring 框架下构造 GWT 应用变得很简单,提供一个易于理解...可以将网络图导出为 GIF, JPEG, PNG, PPM, ARP and PNML (XML based)文件格式。使用了优秀的JHotDraw 5.2 框架。 activemq...
Spring4GWT GWT Spring 使得在 Spring 框架下构造 GWT 应用变得很简单,提供一个易于理解...可以将网络图导出为 GIF, JPEG, PNG, PPM, ARP and PNML (XML based)文件格式。使用了优秀的JHotDraw 5.2 框架。 activemq...
Spring4GWT GWT Spring 使得在 Spring 框架下构造 GWT 应用变得很简单,提供一个易于理解...可以将网络图导出为 GIF, JPEG, PNG, PPM, ARP and PNML (XML based)文件格式。使用了优秀的JHotDraw 5.2 框架。 activemq...