Authentication is a very important part of any project. The open id is an open standard and decentralized protocol. It allows users to be authenticated by cooperating sites using third party service, eliminating the need for webmasters to provide their own ad hoc login. Open Id is about authentication (ie. providing who you are).
This protocol provides a way for a site to redirect a user somewhere else and come back with a verifiable assertion. OpenID provides an identity assertion.
The most important feature of OpenID is its discovery process. OpenID does not require hard coding each the providers you want to use ahead of time. Using discovery, the user can choose any third-party provider they want to authenticate. This discovery feature has also caused most of OpenID's problems because the way it is implemented is by using HTTP URIs as identifiers which most web users just don't get.
The scenario for use of OpenID:
1) The user wants to access his account on example.com
2) example.com asks the user for his OpenID
3) The user enters his OpenID
4) example.com redirects the user to his OpenID provider
5) User authenticates himself to the OpenID provider
6) OpenID provider redirects the user back to example.com
7) example.com allows the user to access his account.
search for OAuth or OpenID connect which will help you to know more.
Top comments (0)