The best of two worlds ?
OpenID Connect als Standard ratifiziert
▻http://www.heise.de/open/meldung/OpenID-Connect-als-Standard-ratifiziert-2126073.html
Der von Unternehmen wie Google, Microsoft, Deutsche Telekom und Salesforce.com ausgearbeitete Standard soll über kurz oder lang OpenID 2.0 im Web ablösen – auch dank der ungemeinen Popularität von OAuth.
OpenID Connect FAQ and Q&As | OpenID
▻http://openid.net/connect/faq
OpenID Connect is an interoperable authentication protocol based on the OAuth 2.0 family of specifications. It uses straightforward REST/JSON message flows with a design goal of “making simple things simple and complicated things possible”. It’s uniquely easy for developers to integrate, compared to any preceding Identity protocol.
OpenID Connect lets developers authenticate their users across websites and apps without having to own and manage password files. For the app builder, it provides a secure verifiable, answer to the question: “What is the identity of the person currently using the browser or native app that is connected to me?”
OpenID Connect allows for clients of all types, including browser-based JavaScript and native mobile apps, to launch sign-in flows and receive verifiable assertions about the identity of signed-in users.
▻http://www.vevo.com/watch/hannah-montana/the-best-of-both-worlds/USWV20620226
;-)