Tools, FAQ, Tutorials:
Authentication Flows with Google OpenID Connect
What are Authentication Flows Supported by Google OpenID Connect service?
✍: FYIcenter.com
Google OpenID Connect service supports 3 Authentication Flows:
1. Implicit Flow - The Implicit Flow is simple to implement. But it is less secure. Authentication is done in a single call to Google OpenID Connect service, which returns the "id_token" containing user identity.
2. Authorization Code Flow (Server Flow) - The Authorization Code Flow is more complex to implement. But it is more secure. Authentication is done in two calls to Google OpenID Connect service. The first call returns only an authorization "code". You need to make a second call to exchange "code" for the final "access token".
3. Hybrid Flow, also called OAuth 2.0 Multiple Response Type Encoding Practices - In the Hybrid Flow, you ask for both "id_token" and authorization "code" in the first call. This allows you to mix the Implicit Flow and Authorization Code Flow together.
⇒ Google OpenID Connect Metadata Document
⇐ Application Registration for Google OpenID
2019-02-11, 439👍, 0💬
Popular Posts:
What is Azure API Management Developer Portal Admin? The Developer Portal Admin is an Azure Web port...
How To Add Column Headers to a Table? If you want to add column headers to a table, you need to use ...
How to add request body examples to my Azure API operation 2017 version to make it more user friendl...
FYIcenter.com Online Tools: FYIcenter JSON Validator and Formatter FYIcenter JSON to XML Converter F...
Where to find tutorials on how to Read and Write Files in PHP? A collection of tutorials to answer m...