Reputation: 5199
Does OIDC make sense for B2B?
I'm implementing an API Gateway and have a very simple question about OIDC connect as an authentication method.
Does Open Id connect only suit the use case of B2C. i.e. I am a customer logging into a website, when i present my credentials to the resource server, it validates with the auth server and i get an access token.
Does it make sense to apply open id connect to B2B? i.e. I am an application trying to access an API. When I present my credentials to the resource server, it validates it with the auth server.
If it does if someone could point me out to some doco on differences between a user and an app for oidc that would be great.
thanks
Upvotes: 2
Views: 833
Answers (1)
Reputation: 28676
I'm not sure what B2B means, but it looks like M2M (machine-to-machine), where you can use client credentials OIDC flow. OIDC offers also grant code/implicit flow for user authentication. Overview of available OIDC flows: https://auth0.com/docs/flows
Upvotes: 1
Related Questions
- OIDC Identity Provider design for SSO: should third party website handle authorization on their own?
- Does OAUTH and OIDC make sense in a scenario when you need Single-Sign On on a microservices mesh and every one of these is owned by same company?
- OIDC together with Asp.net core Identity?
- Azure AD B2C Open ID Connectivity Vs OAuth 2.0
- Mixed OIDC based SPA Client + OAuth Server Client scenario?
- Why use OAuth 2 vs OpenID Connect in Azure B2C for mobile apps
- Understanding Azure B2C Auth flow - Oauth 2.0 and openID connect
- Does Azure Active Directory B2C work with Oauth or Open ID?
- Is this the proper use of OpenID Connect for this use case?
- Open ID as internal authentication mechanism