{"id":929,"date":"2013-01-02T10:06:23","date_gmt":"2013-01-02T18:06:23","guid":{"rendered":"https:\/\/self-issued.info\/?p=929"},"modified":"2013-01-02T10:06:23","modified_gmt":"2013-01-02T18:06:23","slug":"oauth-2-0-and-sign-in","status":"publish","type":"post","link":"https:\/\/self-issued.info\/?p=929","title":{"rendered":"OAuth 2.0 and Sign-In"},"content":{"rendered":"<p><span class=\"plain\"><img decoding=\"async\" align=\"right\" src=\"https:\/\/self-issued.info\/images\/oauth_logo_120x120.png\" alt=\"OAuth logo\" \/><\/span>I highly recommend a piece that my friend Vittorio Bertocci wrote on <a href=\"http:\/\/blogs.msdn.com\/b\/vbertocci\/archive\/2013\/01\/02\/oauth-2-0-and-sign-in.aspx\">the relationship between OAuth 2.0 and sign-in\/federation protocols<\/a>.  While <a href=\"https:\/\/self-issued.info\/?p=870\">OAuth 2.0<\/a> <strong><em>can<\/em><\/strong> be used to sign in users and the term &#8220;OAuth&#8221; is often bandied about in identity contexts, as he points out, there&#8217;s a lot of details to fill in to make that possible.  That&#8217;s because OAuth 2.0 is a <em>resource authorization protocol<\/em> &#8212; <em>not an authentication protocol<\/em>.<\/p>\n<p>Read his post for a better understanding of how OAuth 2.0 relates to sign-in protocols, including a useful discussion of how <a href=\"http:\/\/openid.net\/connect\/\">OpenID Connect<\/a> fills in the gaps to enable people to sign in with OAuth 2.0 in an interoperable manner.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>I highly recommend a piece that my friend Vittorio Bertocci wrote on the relationship between OAuth 2.0 and sign-in\/federation protocols. While OAuth 2.0 can be used to sign in users and the term &#8220;OAuth&#8221; is often bandied about in identity contexts, as he points out, there&#8217;s a lot of details to fill in to make [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7,26,14],"tags":[],"class_list":["post-929","post","type-post","status-publish","format-standard","hentry","category-federation","category-oauth","category-openid"],"_links":{"self":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/929","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=929"}],"version-history":[{"count":4,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/929\/revisions"}],"predecessor-version":[{"id":933,"href":"https:\/\/self-issued.info\/index.php?rest_route=\/wp\/v2\/posts\/929\/revisions\/933"}],"wp:attachment":[{"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/self-issued.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}