Site icon API Security Blog

Use OAuth2 for SSO with OpenID Connect.

If you’re building a web API, it’s likely that your users will need to access the API from multiple devices and browsers. It would be inconvenient if they had to log in every time! Instead, you can use single sign on (SSO) so that once a user logs into your app or website, they don’t have to log in again when accessing the API. This is especially important for mobile apps because logging out of an app often requires deleting it from your phone entirely—a big hassle!

The most popular way to do this is by using OAuth2 with OpenID Connect (OIDC)
https://t.co/XQ0WUhqaaX

Exit mobile version