OpenID Connect (OIDC) is an authentication layer built on top of OAuth 2.0. Where OAuth defines authorization (who can access what), OIDC defines authentication (who the user is) by adding a standardized ID Token, a defined set of user claims, and a UserInfo endpoint.

How it works

OIDC reuses the OAuth 2.0 Authorization Code flow with one addition: when the client requests the openid scope,…