问题描述
在 Google的《 OpenID迁移指南》 中,用于从OpenID 2.0过渡到OpenID Connect,第1步是我需要获取我的应用程序的OAuth凭据.
In Google's OpenID Migration Guide, for transitioning from OpenID 2.0 to OpenID Connect, step 1 is that I need to obtain OAuth credentials for my application.
我喜欢常规" OpenID的一件事是,我可以允许我的用户从他们选择的任何IDP中进行身份验证.无论他们使用Google,Yahoo还是任何其他终结点作为开发人员,我都无需麻烦地从每个提供商那里手动获取OAuth凭据并配置我的应用程序来支持它们.
One thing I like about "regular" OpenID is that I can allow my users to authenticate from any IDP of their choosing. Whether they use Google, Yahoo, or any other endpoint, as a developer I don't need to go through the trouble of manually obtaining OAuth credentials from each of those providers and configuring my application to support them.
随着提供商不再支持传统的OpenID,我是否有办法让用户继续使用其当前的IDP,而无需我遍历每个IDP并手动获得OAuth凭据?
As providers discontinue support for traditional OpenID, is there a way for me to allow users to continue using their current IDPs without me having to go through each one and manually obtaining OAuth credentials?
推荐答案
在OpenID Connect中实现此目的的方法是使用 OpenID Connect发现和 OpenID Connect动态客户端注册协议扩展,但是您的OpenID Connect Provider当然需要支持这些扩展.
The way to achieve this in OpenID Connect is by using OpenID Connect Discovery and OpenID Connect Dynamic Client Registration protocol extensions but of course your OpenID Connect Provider needs to support these extensions.
这篇关于您可以在不获取OAuth凭证的情况下使用OpenID Connect吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!