OpenID Connect Technical Details

Articles

The OpenID Connect Discovery Document
Also referred to as the "well-known endpoint," the discovery document is a set of OpenID Connect values that can be retrieved by OIDC clients; it’s the discovery document that enables OIDC clients to configure themselves in order to ...
JSON Web Keys
A JSON Web Key (JWK) provides a standard method for representing a cryptographic key using JSON (JavaScript Object Notation). In the case of Hosted Login, these web keys are used to verify the signature on JSON Web Tokens (i.e.,  identity token...
OpenID Connect Token Reference
Token are small bits of digital information (typically encoded/encrypted as JSON objects) that are used for authentication and authorization purposes. Note . So what  is  the difference between authentication and authorization?...
OpenID Connect Scopes and Claims
Scopes and claims represent the user information that a Hosted Login client requests from a server. For our purposes, each claim is equivalent to one piece of user information: the user’s first name is a claim, the user’s middle name is ...
Converting Unix Epoch Time
Unix epoch time represents the number of seconds that have elapsed since 00:00:00 Coordinated Universal Time (UTC) on January 1, 1970. For example, the Unix epoch time for Tuesday, March 12, 2019 at 8:24:23 Pacific Daylight time is this: ...