Role of a simple Identity Provider when it does not have built-in OIDC Provider #127
Unanswered
cloudcompute
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi @panva
I have a question.. great if you answer it.
An OIDC Provider (OP) makes a call to Identity Provider (IdP) for authentication. In response, the IdP simply returns a success or error response. And, the OP and web applications itare responsible for everything else like issuing JWT access and refresh tokens, session cookies etc. IdPs don't care about all such JWT and session stuff.
Is this correct i.e.
Identity Provider = OIDC client (ability to communicate with OP server) + managing identites + simply sending successful or failure response
Beta Was this translation helpful? Give feedback.
All reactions