Name
|
Description
|
OAuth
2.0
|
Grant
access to functionality/data/etc.. without having to deal with the original
authentication.
|
OpenID
Connect (OIDC)
|
OpenID
Connect is an authentication protocol that is a simple identity layer on top
of the OAuth 2.0 protocol.
|
Name
|
Description
|
Example
|
Auth
Server
|
Authentication
and Authorization center which
·
Verify
the identity of user
·
Issue
Access Token
·
Authorize
the client to access protected resource
|
|
Resource
|
Resource
may be
·
User/Account
information
·
API
·
Data
|
1. Personal information, such as name, address, photos.
2. Application or APIs.
|
Resource
owner
|
Resource
owner may be
·
User
·
Machine
·
Application
Who
own the resource and authorize an Client to access their resource.
|
A
Dropbox or Google Cloud Driver end-user.
The
end-user can authorize other 3rd party application to access their
resources stored in Dropbox or Google Cloud Driver.
|
Resource
Server
|
Who
hosts the protected user accounts, resource
|
Dropbox,
Google Cloud Driver
|
Client
|
The
client is the application that wants to access the user (resource owner)'s
resource
|
The
3rd party application who want to access the files in Dropbox or
Google Cloud Driver
|
▋Related articles
01. [OpenLDAP] Create an OpenLDAP container
02. [ASP.NET Core] Identity Server 4 – Concepts
03. [ASP.NET Core] Identity Server 4 – LDAP authentication
04. [ASP.NET Core] Identity Server 4 – Secure Web API
05. [ASP.NET Core] Identity Server 4 – Custom Event Sink
06. [ASP.NET Core] Identity Server 4 – Refresh Token
07. [ASP.NET Core] Identity Server 4 – Role based authorization
08. [ASP.NET Core] Identity Server 4 – Policy based authorization
09. [ASP.NET Core] Identity Server 4 - Dockerize
10. [ASP.NET Core] Identity Server 4 – Client Credential
11. [ASP.NET Core] Identity Server 4 – Policy based authorization with custom Authorization Handler
12. [ASP.NET Core] Identity Server 4 – Signing credential
13. [ASP.NET Core] Identity Server 4 – Authenticate by multiple LDAP
14. [ASP.NET Core] Identity Server 4 – Cache and refresh Discovery document
15. [ASP.NET Core] Identity Server 4 – PKCE Authorization Code Flow
16. [ASP.NET Core] Identity Server 4 – PKCE Authorization Code Flow (Javascript client)
沒有留言:
張貼留言