what is openid connect

OpenID Connect (OIDC) is an identity protocol that utilizes the authorization and authentication mechanisms of OAuth 2.0. It is an interoperable authentication protocol that simplifies the way to verify the identity of a user across Web-based, mobile, and JavaScript clients. OIDC allows third-party applications to verify the identity of the end-user and to obtain basic user profile information. It is an identity layer built on top of the OAuth 2.0 framework. OIDC uses JSON web tokens (JWTs) to obtain user information using flows conforming to the OAuth 2.0 specifications. OpenID Connect enables application and website developers to launch sign-in flows and receive verifiable assertions about users. It allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain the basic profile information about the end-user in an interoperable and REST-like manner. OIDC is API-friendly and works well in both mobile apps and web applications. It is often used in consumer-facing services where the sharing of personal data requires the users explicit consent.