QA (public) » openQA Project (public)

If i understand OpenID Connect correctly it's really just OAuth 2.0, which might be rather easy to support with existing Mojolicious plugins.

That's what @cdywan is experimenting with: https://github.com/os-autoinst/openQA/pull/3150

The difference between OAuth 2.0 and OpenID Connect is that the former provides authorization (am I allowed?), the latter covers authentication (who am I?). So #67576 naturally overlaps with this.

• Google adheres to the OpenID Connect spec, recognizes/requires openid email scope and provides id_token to avoid calling into Google API to authenticate.
• Okta also supports id_token.
• GitHub implements OAuth 2.0 only which is why the authentication requires an extra call into GitHub API and non-standard scopes.