Support for OAuth and OpenID Connect has been part of Airlock IAM since 2014. The OAuth and OIDC plugins of Airlock IAM are constantly being developed and functionally enhanced for the latest use cases and protocol updates.
Supported features
The following table shows which features of the OAuth 2.0/OIDC standards Airlock IAM implements and where:
Features | OAuth 2.0 Authorization Server (AS) | OAuth 2.0 Client | |
|---|---|---|---|
OAuth 2.0 | OAuth 2.0 Authorization Code Grant* | .theme/1.3/en-us.16795.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | .theme/1.3/en-us.16796.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} |
OAuth 2.0 Client Credentials Grant* | .theme/1.3/en-us.16797.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OAuth 2.0 Token Exchange Grant* | .theme/1.3/en-us.16798.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OAuth 2.0 Implicit Grant | |||
OAuth 2.0 Token Introspection | .theme/1.3/en-us.16799.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OAuth 2.0 Token Revocation | .theme/1.3/en-us.16800.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OAuth 2.0 Dynamic Client Registration | .theme/1.3/en-us.16801.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OAuth 2.0 Authorization Server Metadata Endpoint | .theme/1.3/en-us.16802.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | .theme/1.3/en-us.16803.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | |
OIDC | OpenID Connect Authorization Code Flow* | .theme/1.3/en-us.16804.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | .theme/1.3/en-us.16805.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} |
OpenID Connect Implicit Flow | |||
OpenID Connect Token Introspection | .theme/1.3/en-us.16806.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OpenID Connect Token Revocation | .theme/1.3/en-us.16807.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OpenID Connect Discovery | .theme/1.3/en-us.16808.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | .theme/1.3/en-us.16809.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | |
OAuth 2.0 Dynamic Client Registration | .theme/1.3/en-us.16810.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OpenID Connection Session Management | .theme/1.3/en-us.16811.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
OpenID Connect UserInfo Endpoint | .theme/1.3/en-us.16812.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | .theme/1.3/en-us.16813.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | |
OpenID Connect RP-initiated logout (as RP) | .theme/1.3/en-us.16814.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
Account Linking | .theme/1.3/en-us.16815.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
Automated Account Registration (Social Registration) | .theme/1.3/en-us.16816.Icon_-_Tick_(GW_gr_c3_bcn)_original.svg){kind=icon} | ||
| * | Implemented grant type. |