OpenID Connect requires the following:
The core OpenID Connect protocol is implemented in the
This module is enabled by default.
The OpenID Connect module automatically enables the required OAuth modules for its operation.
Additional modules related to the OpenID protocol are set out in the table below.
|Module||Description||Enabled by default?|
|SimpleID\Protocols\Connect\ConnectClientRegistrationModule||Implements OpenID Connect dynamic client registration||No|
|SimpleID\Protocols\Connect\ConnectSessionModule||Implements OpenID Connect session management||No|
One of the objectives of the OpenID Connect protocol is to supply information about the user to
the requesting app or web site. Therefore the protocol is only useful if you store your user
information under the
userinfo object in the user file. For example, you can store your
name and e-mail address as follows:
In order for apps and web sites to discover your SimpleID installation, you will need to set up WebFinger. The SimpleID distribution includes a simple WebFinger server. See the WebFinger page for further information on how to set this up.
Alternatively, if you wish to run your own WebFinger server, you will need to point
http://openid.net/specs/connect/1.0/issuer for each user to your SimpleID server.
Registering clients with SimpleID
Clients that use WebFinger for discovery will automatically obtain the configuration information required to connect to SimpleID. If a client does not use WebFinger, you will need