OAuth 2.0 and OIDC
ForgeRock supports the OAuth 2.0 and OpenID Connect protocols:
-
OAuth 2.0 provides authorized access to protected resources.
-
OpenID Connect (OIDC) provides an identity layer on top of OAuth 2.0.
OAuth 2.0 lets you set up access to your resources without sharing your account information. OpenID Connect lets a client application read basic information about a user over REST.
OAuth 2.0 works with different client types, as defined in RFC 6749.
For more information about how ForgeRock processes OAuth 2.0 and OpenID Connect flows, see the following AM documents: