OpenID Connect

OpenID Connect represents a substantial set of behaviors and interactions built on the foundations of OAuth2. OAuthLib supports OpenID Connect Authentication flows when the initial grant type request’s scope parameter contains openid. Providers wishing to provide this support must implement a couple of new features within their RequestValidator subclass.

A new userinfo endpoint can also be implemented to fulfill the core of OIDC.

• Creating a Provider
  • 1. Create an OIDC provider
  • 2. Migrate your OAuth2.0 provider into an OIDC provider
  • 3. Extend RequestValidator
  • 4. Preconfigured all-in-one servers
• OpenID Provider Endpoints
  • OpenID UserInfo endpoint
• Grant types
  • Dispatchers
  • OpenID Authorization Code
  • OpenID Implicit
  • OpenID Hybrid
  • OpenID Refresh Grant
• ID Tokens
  • JWT/JWS example with pyjwt library