OpenID Connect
E184249
OpenID Connect is an identity layer built on top of OAuth 2.0 that enables secure user authentication and single sign-on across applications.
All labels observed (2)
| Label | Occurrences |
|---|---|
| OpenID Connect canonical | 13 |
| OpenID Connect Core | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T1634892 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
NED1
Entity disambiguation (via context triple)
gpt-5-mini-2025-08-07
Target entity: OpenID Connect Context triple: [OAuth 2.0, influenced, OpenID Connect]
-
A.
OAuth 2.0
OAuth 2.0 is an industry-standard authorization framework that enables applications to obtain limited access to user resources on HTTP services without exposing user credentials.
-
B.
Oracle Identity Federation
Oracle Identity Federation is an enterprise software solution from Oracle that enables secure single sign-on and identity federation across organizational and cloud boundaries.
-
C.
Azure Active Directory
Azure Active Directory is Microsoft’s cloud-based identity and access management service that provides authentication, single sign-on, and directory services for users, applications, and resources.
-
D.
OpenAPI
OpenAPI is a widely adopted, language-agnostic specification for describing and documenting RESTful APIs in a standardized, machine-readable format.
-
E.
Keystone Service
Keystone Service is an Amtrak-operated passenger rail service in Pennsylvania that provides frequent regional connections, primarily between Harrisburg and New York City via Philadelphia.
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
NED2
Entity disambiguation (via description)
gpt-5-mini-2025-08-07
Target entity: OpenID Connect Target entity description: OpenID Connect is an identity layer built on top of OAuth 2.0 that enables secure user authentication and single sign-on across applications.
-
A.
OAuth 2.0
OAuth 2.0 is an industry-standard authorization framework that enables applications to obtain limited access to user resources on HTTP services without exposing user credentials.
-
B.
Oracle Identity Federation
Oracle Identity Federation is an enterprise software solution from Oracle that enables secure single sign-on and identity federation across organizational and cloud boundaries.
-
C.
Azure Active Directory
Azure Active Directory is Microsoft’s cloud-based identity and access management service that provides authentication, single sign-on, and directory services for users, applications, and resources.
-
D.
OpenAPI
OpenAPI is a widely adopted, language-agnostic specification for describing and documenting RESTful APIs in a standardized, machine-readable format.
-
E.
Keystone Service
Keystone Service is an Amtrak-operated passenger rail service in Pennsylvania that provides frequent regional connections, primarily between Harrisburg and New York City via Philadelphia.
- F. None of above. chosen
Statements (58)
| Predicate | Object |
|---|---|
| instanceOf |
authentication protocol
ⓘ
identity layer ⓘ open standard ⓘ |
| builtOn | OAuth 2.0 ⓘ |
| defines |
Discovery Endpoint
ⓘ
Dynamic Client Registration ⓘ ID Token ⓘ UserInfo Endpoint ⓘ standard claims ⓘ standard scopes ⓘ |
| enables | delegated authentication ⓘ |
| hasClaim |
email
ⓘ
email_verified ⓘ family_name ⓘ given_name ⓘ locale ⓘ name ⓘ picture ⓘ preferred_username ⓘ sub ⓘ updated_at ⓘ |
| hasScope |
address
ⓘ
email ⓘ offline_access ⓘ openid ⓘ phone ⓘ profile ⓘ |
| introduced | 2014 ⓘ |
| relatedStandard |
JSON Web Encryption
ⓘ
JSON Web Signature ⓘ JSON Web Tokens (JWT) ⓘ
surface form:
JSON Web Token
OAuth 2.0 ⓘ |
| replaces | OpenID 2.0 ⓘ |
| securityProperty |
supports bearer tokens
ⓘ
supports token encryption ⓘ supports token signature validation ⓘ |
| standardizedBy | OpenID Foundation ⓘ |
| supports |
back-channel logout
ⓘ
federated identity ⓘ front-channel logout ⓘ session management ⓘ single sign-on ⓘ user authentication ⓘ |
| supportsFlow |
authorization code flow
ⓘ
hybrid flow ⓘ implicit flow ⓘ |
| usedFor |
API authentication
ⓘ
mobile applications ⓘ single-page applications ⓘ web applications ⓘ |
| uses |
HTTPS
ⓘ
JSON ⓘ JSON Web Tokens (JWT) ⓘ
surface form:
JSON Web Token
REST API ⓘ
surface form:
REST
authorization endpoint ⓘ jwks_uri ⓘ token endpoint ⓘ userinfo endpoint ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
Instruction
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Input
Subject: OpenID Connect Description of subject: OpenID Connect is an identity layer built on top of OAuth 2.0 that enables secure user authentication and single sign-on across applications.
Referenced by (14)
Full triples — surface form annotated when it differs from this entity's canonical label.
this entity surface form:
OpenID Connect Core
subject surface form:
JSON Web Token