标准摘要
[中文适用范围]: OpenID Connect 1.0 是 OAuth 2.0 协议之上的简单身份层。它使客户端能够根据授权服务器执行的身份验证来验证最终用户的身份,并以可互操作和类似 REST 的方式获取有关最终用户的基本个人资料信息。本文档定义了核心 OpenID Connect 功能:基于 OAuth 2.0 构建的身份验证以及使用声明来传达有关最终用户的信息。它还描述了使用 OpenID Connect 的安全和隐私注意事项。 [外文原描述]: OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It enables Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner. This document defines the core OpenID Connect functionality: authentication built on top of OAuth 2.0 and the use of Claims to communicate information about the End-User. It also describes the security and privacy considerations for using OpenID Connect.
英文名称Information technology - OpenID connect - OpenID connect core 1.0 incorporating errata set 2