OpenID Connect (OIDC) is a widely used framework for delegating Authentication and Authorization. What this means is that you can set up Assertiv to look after registration and logins for all of your OpenID Connect enabled applications.
The benefit of this is that you can avoid duplicating effort and consolidate your security. You will no longer need to store usernames and passwords for your users in each application. When someone wants to access an application, they will be redirected to Assertiv and given the option to either register or log in. Assertiv will then use OIDC to tell your application about the logged in user.
This has an additional benefit of seeing all of your users in one place. If you need to change something about a user, you can do it once in Assertiv, rather than having to go to each system individually. This saves time and improves your user data integrity.
This approach can be used for internal applications for your staff as well as customer facing applications. Assertiv is flexible enough to cater for a wide range of scenarios.
The Technical Stuff
OpenID Connect is a specification which extends the OAuth 2.0 framework protocol. By using OpenID Connect (OIDC), authentication and authorization can be delegated to a trusted third party. This is useful when organizations are looking to centralize their identity management.
Every Assertiv Organization has OpenID Connect enabled, which allows the set up of clients which integrate with your applications.
We cater for the following grant types:
- Authorization Code Flow
- Implicit Flow
- Refresh Tokens
We also support:
- User Info Token Endpoint
- Web and Native Applications