Title | Type | Builds on | Primary goal(s) | Learn more |
---|---|---|---|---|
New York University | Deployment | WSO2 Identity Server - OIDC, OAuth 2.0 | https://wso2.com/identity-and-access-management/ | |
Columbia | Deployment | PingFederate | ||
LBNL | Deployment | |||
UWash - OAuth for Web APIs | Deployment | OAuth Client Credentials | API Authorization - system to system access | |
UWash - Social2SAML Gateway | Deployment | SATOSA | Enable social login for SAML SPs | https://wiki.cac.washington.edu/x/8wr-B |
UWash - Microsoft Infrastructure - Azure AD | Deployment | Azure AD | Enable sign in using UW NetID | https://itconnect.uw.edu/service/azure-active-directory/ |
CILogon OIDC | Deployment | OIDC R&E OIDC Profile | Add OIDC to CILogon | https://www.cilogon.org/oidc |
ORCID API - OAuth | Deployment | OAuth 2.0 | ORCID API Authorization | https://members.orcid.org/api/oauth |
Globus Auth | Deployment | RFC 7636 (PKCE) | Globus API Authorization | https://docs.globus.org/api/auth/developer-guide/ |
Spanish SIR2 Federation - AppAuth Proxy | Deployment | AppAuth | Provide user authentication via OIDC to native mobile apps |
SATOSA | Implementation | OIDC OIDC Federation 1.0 | Translate between OIDC and SAML (and OAuth/Social?) | https://github.com/IdentityPython/SATOSA |
MPASSid | Implementation | OIDC | Translate between OIDC and SAML (and OAuth/Social?) | https://github.com/Digipalvelutehdas/MPASSid-proxy |
GÉANT Shibboleth OIDC Plugin | Implementation | OIDC Conformance Profiles R&E OIDC Profile | Add OIDC to Shibboleth IdP | https://github.com/CSCfi/shibboleth-idp-oidc-extension |
Chicago-Unicon Shibboleth OIDC Overlay | Implementation | OIDC Conformance Profiles | Add OIDC (Code flow) to Shibboleth IdP | https://github.com/uchicago/shibboleth-oidc |
CAS | Implementation | OIDC? OAuth 2.0? | CAS server goals? CAS client goals? Translate between OIDC and SAML Add OAuth/Social? | https://apereo.github.io/cas/5.3.x/protocol/OIDC-Protocol.html https://apereo.github.io/cas/5.3.x/protocol/OAuth-Protocol.html |
Azure Active Directory | Implementation | OIDC Conformance Profiles OIDC OAuth 2.0 | Enable integration with Azure AD Enable OIDC for end user authentication Enable OAuth for API authorization | https://docs.microsoft.com/en-us/azure/active-directory/develop/azure-ad-developers-guide |
Spring Security 5.0 | Implementation | Spring Security OAuth 2.0 OIDC | Add OAuth 2.0 to Spring Security Add OIDC to Spring Security | https://github.com/spring-projects/spring-security/wiki/OAuth-2.0-Features-Matrix https://spring.io/blog/2018/01/30/next-generation-oauth-2-0-support-with-spring-security |
AppAuth SDK | Implementation | RFC 7636 (PKCE) RFC 8252 (Native Apps) OIDC OAuth 2.0 | SDKs for native mobile apps Implement best practices OIDC for end user authentication OAuth for API authorization | |
R&E OIDC Profile | Standard - profile - conformance | OIDC | Promote security and interoperability Enable implementations | coming in 2019! |
OIDC Conformance Profiles | Standard - profile - conformance | OIDC | Enable certification of implementations | http://openid.net/certification/ |
iGov Assurance Profile for OpenID Connect 1.0 | Standard - profile - conformance | OIDC iGov Assurance Profile for OAuth 2.0 | OIDC for end user authentication Increase baseline security Provide greater interoperability Enable consumer-to-government deployments | http://openid.net/wg/igov/ |
iGov Assurance Profile for OAuth 2.0 | Standard - profile - conformance | OAuth 2.0 | API authorization Increase baseline security Provide greater interoperability Enable consumer-to-government deployments | http://openid.net/wg/igov/ |
OpenID Connect Federation 1.0 | Standard - profile | OIDC 1.0 OAuth 2.0 Authorization Server Metadata | Establish trust between clients and IdPs Introduces federation operator (trusted 3rd party) Standardizes metadata statements Verify and enforce common policies Transfer verified metadata | http://openid.net/specs/openid-connect-federation-1_0-04.html |
OpenID Connect 1.0 | Standard - profile | OAuth 2.0 | End user authentication, user claims | http://openid.net/connect/ |
OAuth 2.0 | Standard - framework | Other standards | API authorization | https://oauth.net/2/ |