August 2018
Beginner
594 pages
22h 33m
English
Content preview from Software Architect's Handbook
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Authenticating with the identity provider
Authentication performed by an authorization server along with OpenID Connect allows clients to verify the identities of users. The client application, which is referred to as the relying party because it relies on the identity provider, requires a user's identity.
A flow determines how identity and access tokens are returned to the client. There are various flows depending on the types of application that are communicating and how we want that interaction to work. In one example, the client application (relying party) redirects to the authorization server, which serves as the identity provider. It sends an authentication request to the authorization endpoint, as it is this endpoint that the client ...