Provide authentication with OpenID Connect

Completed

Comments

17 comments

  • Greg Jefferis
    Just to note that I am also interested in this. This is in part because we would like to support distributed annotation of neuroanatomical data at a site that I collaborate on, http://www.virtualflybrain.org. Linking OpenID and ORCID could provide a mechanism to combine simple openid based authorisation on our site with the ability to tag annotations with a user's ORCID, which is a more appropriate link to the scholarly record. Thanks, Greg Jefferis, MRC LMB, Cambridge, UK.
    0
    Comment actions Permalink
  • Matthew Cockerill
    not quite sure why this item is shown as Planned, but the converse (probably even more useful in the short-term at least) of being able to use FB/Google/Twitter to login to ORCID is currently showing as 'postponed' http://support.orcid.org/forums/175591-orcid-ideas-forum/suggestions/5010131-openid-login Worth linking the two items somehow, and aiming to keep their status in sync. Hopefully OpenID integration will be done in both directions, right?
    0
    Comment actions Permalink
  • Richard Padley
    Becoming an OpenID provider would definitely reduce friction for authentication uses. Gets my vote - and one day I might be able to login here with my ORCID ID instead of Facebook or Google !
    0
    Comment actions Permalink
  • Maurice Vanderfeesten
    Hi ORCID team, could you keep us informed as well? When is it planned in 2015? We would love to authenticate users also with orcid for our data repository. https://data.3tu.nl/account/signin/
    0
    Comment actions Permalink
  • Greg Jefferis
    In terms of openid to log in to orcid and orcid as openid provider, for my group the interest is in obtaining an authenticated orcid. A sample use case would be a scientist wanting to contribute some information to a web database. By authenticating with orcid as openid provider, we would hope to ensure two things 1) user authentication to prevent spam etc 2) to identify the origin of contributions with the orcid as a globally unique user identifier with relevance to the academic community.
    0
    Comment actions Permalink
  • Robert Davey
    Do you have a more up-to-date roadmap of this OpenID integration? We'd love to be able to map users properly to services rather than just Oauth2, especially for those services where we need to reliably ensure user data/metadata submission is coming from a particular ORCID-authenticated researcher, e.g. COPO (https://documentation.tgac.ac.uk/display/COPO/Overview).
    0
    Comment actions Permalink
  • ORCID
    Hi Robert, We don't have a firm plan or timeline for this project yet as the details are still being worked out. But I've moved the status up to started as we are working with OpenID and have started coding the integration. I'll update the status again when we are further along. Best, -Catalina
    0
    Comment actions Permalink
  • Graham Klyne
    Yes please! I am working on an application I could use to test it with when available (currently works with Google+)
    0
    Comment actions Permalink
  • Markus Ankenbrand
    I would really like this feature, too. Is there any update on the status?
    0
    Comment actions Permalink
  • Paul Dlug
    Is there any update on the status of this feature? It would be really helpful to have support for OpenID Connect. It would also enable the use of hosted identity services like AWS Cognito which support OpenID Connect (http://docs.aws.amazon.com/cognito/latest/developerguide/open-id.html).
    0
    Comment actions Permalink
  • raoul ciappelloni
    I am really interested about OpenID integration; any news about it?
    0
    Comment actions Permalink
  • Vit
    Any updates? Seems very useful!
    0
    Comment actions Permalink
  • Markus Müller
    thanks for any news
    0
    Comment actions Permalink
  • ORCID (EMEA)
    We are glad to let you know that ORCID is adding support for OpenID and we want your help testing it! OpenID Connect is a simple identity layer on top of the OAuth 2.0 protocol. It supplements existing OAuth authentication flows and provides information about users to clients in a well-described manner. With this update ORCID will provide the Basic OpenID Provider conformance profile: a new openid scope will be available for our beta testers, which can be used as part of the existing authentication flow and will result in an OpenID token being returned with the access token. We encourage all interested parties to join the beta test to provide us with feedback. More information here: https://docs.google.com/document/d/1a0gUIcErHULSjSlsAKqfnIaEGXFzTaYlK7BOXQGkZAI/edit OpenID support is available for both member and public API clients. If you’re interested in helping us test this feature, please contact us at support[at]orcid.org. Thanks! Warm regards, ORCID Community Team
    0
    Comment actions Permalink
  • xyzzy
    Great, expecting a challenge for the OpenID on http://orcid.org/0000-0003-2016-4208 "soon", but not holding my breath: OpenID is acrually older than OAuth.
    0
    Comment actions Permalink
  • Anonymous
    Is this done yet?
    0
    Comment actions Permalink
  • Gabriela Mejias

    We are glad to let you know that this development is finished and ORCID now supports OpenID Connect. For more information you can refer to: https://github.com/ORCID/ORCID-Source/blob/master/orcid-web/ORCID_AUTH_WITH_OPENID_CONNECT.md

    We will also be announcing this functionality in our blog soon: https://orcid.org/blog

    For any other questions, please feel free to contact support@orcid.org

    Warm regards,
    ORCID Community Team

    0
    Comment actions Permalink

Please sign in to leave a comment.