标准摘要
[中文适用范围]: OpenID Connect 1.0 是 OAuth 2.0 协议之上的简单身份层。它使客户端能够基于授权服务器执行的身份验证来验证最终用户的身份,并以可互操作和类似 REST 的方式获取有关最终用户的基本个人资料信息。本文档定义了一种注销机制,该机制使用通过用户代理在 OP 和被注销的 RP 之间进行前端通道通信,而无需依赖方页面上的 OpenID 提供商 iframe。其他协议已使用 HTTP GET 到 RP URL 来清除登录状态以实现此目的。本文档做同样的事情。 [外文原描述]: OpenID Connect 1.0 is a simple identity layer on top of the OAuth 2.0 protocol. It enables Clients to verify the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner. This document defines a logout mechanism that uses front-channel communication via the User Agent between the OP and RPs being logged out that does not need an OpenID Provider iframe on Relying Party pages. Other protocols have used HTTP GETs to RP URLs that clear login state to achieve this. This document does the same thing.
英文名称Information technology - OpenID connect - OpenID connect front-channel logout 1.0