• Home
  • Archive
  • Tools
  • Contact Us

The Customize Windows

Technology Journal

  • Cloud Computing
  • Computer
  • Digital Photography
  • Windows 7
  • Archive
  • Cloud Computing
  • Virtualization
  • Computer and Internet
  • Digital Photography
  • Android
  • Sysadmin
  • Electronics
  • Big Data
  • Virtualization
  • Downloads
  • Web Development
  • Apple
  • Android
Advertisement
You are here: Home » What is OpenID?

By Abhishek Ghosh June 25, 2014 6:25 am Updated on June 25, 2014

What is OpenID?

Advertisement

It is quite common to ask What is OpenID. OpenID is a decentralized authentication system to login using credentials from OpenID providers. Many years ago, we published a guide on How to use your domain name as OpenID. With time, many things has been changed, so we will start the topic on OpenID. Recently, we published another tutorial on LDAP Server. Together or alone they can be used for authentication. OpenID is a Foundation, OpenID allows a user to login with only so-called OpenID (that is an URL, in this context also called identifier), without a user name and password for all the supporting sites,relying parties to register.

 

Basic Principle To Understand What is OpenID

 

To Login with OpenID, an OpenID identity is required. Such identity is provided by an OpenID provider. Due to the decentralized architecture of OpenID there are many different OpenID providers. Since the protocol is open, implementations exist in many programming languages. Exclusively under open source license, the software can be installed on a dedicated server. Thus, it is possible for anyone to be the OpenID provider.

An OpenID is in the form of a URL. Usually, the user name is a subdomain of the OpenID provider: abhishek.thecustomizewindows.com. Some vendors also use the user name as a path in the URL : thecustomizewindows.com/abhishek. To be independent with OpenID from a specific provider, it is recommended that wherever possible a unique URL should be used as OpenID. This approach is called delegation. Websites which supports OpenID as a login process can continue to offer a classic login (user with password) in addition to OpenID login, or waive the classic logon. In the latter case, no functions have to be like “Forgot password” will be implemented, it represents on the part of the website operator that no longer usernames and passwords will be stored on the server. This is an effort for shifting the identity management to the OpenID provider, it is thus also decentralized.

Advertisement

---

What is OpenID

 

Usage of OpenID

 

From small blogs and web portals to industry giants have implemented the standard and ensure a wide dissemination. Yahoo has implemented a support, other companies like Google, AOL, Blogger, Flickr, Hyves, LiveJournal, Microsoft (provider name Microsoft account), Mixi, Myspace, Novell, Orange, Sears, Sun, Universal Music Group, VeriSign, WordPress, Yahoo!, GitHub, Last.fm, Linkedin, and Twitter are also behind the standard and partially already use them. Thus, the number of active accounts rises to 368 million (January 2008). The current version of OpenID is OpenID 2.0, finalized and published in December 2007.

The technology of OpenID is vulnerable against phishing attacks. This is due to the fact that a redirection to the page of the OpenID provider is necessary. As the operator of a site that uses OpenID to login, one can easily create a redirection page that resembles the provider side, but as a proxy serves and passes the username and password to the operator.

However, for the user it is easier to validate a login page for authenticity using the OpenID architecture, because they have to remember only one login page. The OpenID provider also provide more security by about cookies, show an individual picture, compare the HTTP Referrer with the IP of the requester or by a client-side TLS certificate for authentication. Especially the latter is supported by more and more providers.

In February 2014 the OpenID Foundation released OpenID Connect as an authentication layer that sits on top of the OAuth 2.0 authorization framework. OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol, which allows computing clients to verify the identity of an end-user based on the authentication performed by an authorization server, as well as to obtain basic profile information about the end-user in an interoperable and REST-like manner. The term REST-like manner indicates that the software architectural style within the distributed hypermedia system adheres to a coordinated set of architectural constraints applied to the components, connectors, and data elements. In technical terms, OpenID Connect specifies a RESTful HTTP API, using JSON as a data format.

Tagged With OpenID URL

This Article Has Been Shared 384 Times!

Facebook Twitter Pinterest
Abhishek Ghosh

About Abhishek Ghosh

Abhishek Ghosh is a Businessman, Orthopaedic Surgeon, Author and Blogger. You can keep touch with him on Twitter - @AbhishekCTRL.

Here’s what we’ve got for you which might like :

Articles Related to What is OpenID?

  • Getting Kids into Computing

    Getting kids into computing can be difficult work for the parents – mastering computing is must today. Making them aware of Privacy and Security is important.

  • Tilde : The Mystic Character

    Tilde (~) is a character in the form of a horizontal wavy line formed of two equal bays. The character is used as a punctuation mark, as diacritical marks and as a symbol in some technical language. It was first used in the polytonic orthography of Ancient Greek, as a variant of the circumflex, representing […]

  • OS X Superuser : Enabling and Cautions

    As we all know, OS X Superuser account sometimes is specially required but most often we are not aware how are the ways or why not to use this Superuser mode.

  • High Fidelity or hi-fi Audio Explained

    High Fidelity or hi-fi Audio is a quality standard which means that the playback sound or images is very faithful to the original, noise and distortion is minimum.

  • TTL or Time to Live Explained

    Time to live or TTL is the term of validity of data in a given computer networks that limits the lifespan or lifetime of data, that determines how many intermediate stations (hops) a packet of data is allowed to pass in the Internet.

Additionally, performing a search on this website can help you. Also, we have YouTube Videos.

Take The Conversation Further ...

We'd love to know your thoughts on this article.
Meet the Author over on Twitter to join the conversation right now!

If you want to Advertise on our Article or want a Sponsored Article, you are invited to Contact us.

Contact Us

Subscribe To Our Free Newsletter

You can subscribe to our Free Once a Day, Regular Newsletter by clicking the subscribe button below.

Click To Subscribe

Please Confirm the Subscription When Approval Email Will Arrive in Your Email Inbox as Second Step.

Search this website…

 

Popular Articles

Our Homepage is best place to find popular articles!

Here Are Some Good to Read Articles :

  • Cloud Computing Service Models
  • What is Cloud Computing?
  • Cloud Computing and Social Networks in Mobile Space
  • ARM Processor Architecture
  • What Camera Mode to Choose
  • Indispensable MySQL queries for custom fields in WordPress
  • Windows 7 Speech Recognition Scripting Related Tutorials

Social Networks

  • Pinterest (21K Followers)
  • Twitter (5.3k Followers)
  • Facebook (5.7k Followers)
  • LinkedIn (3.7k Followers)
  • YouTube (1.3k Followers)
  • GitHub (Repository)
  • GitHub (Gists)
Looking to publish sponsored article on our website?

Contact us

Recent Posts

  • Basics on Python Tornado (web server) March 8, 2021
  • What You Need to Know About Hybrid Mobile App Development March 6, 2021
  • Why Not to Use Your Host for Email Marketing March 5, 2021
  • What You Need to Know About the Microservices March 4, 2021
  • Fix Missing/Bad FileProvider for Freshchat (Android error code 354) March 3, 2021

 

About This Article

Cite this article as: Abhishek Ghosh, "What is OpenID?," in The Customize Windows, June 25, 2014, March 8, 2021, https://thecustomizewindows.com/2014/06/openid/.

Source:The Customize Windows, JiMA.in

 

This website uses cookies. If you do not want to allow us to use cookies and/or non-personalized Ads, kindly clear browser cookies after closing this webpage.

Read Cookie Policy.

PC users can consult Corrine Chorney for Security.

Want to know more about us? Read Notability and Mentions & Our Setup.

Copyright © 2021 - The Customize Windows | dESIGNed by The Customize Windows

Copyright  · Privacy Policy  · Advertising Policy  · Terms of Service  · Refund Policy