OpenIDの勉強(備忘録)

OpenID Japan

• http://openid-foundation-japan.github.io/

OpenID Authentication 2.0

• http://openid-foundation-japan.github.io/openid-authentication.html
• http://openid-foundation-japan.github.io/rfc6749.ja.html
• http://www.slideshare.net/matake/idit-2014

JWT

• http://openid-foundation-japan.github.io/draft-ietf-oauth-json-web-token-11.ja.html

• http://qiita.com/TakahikoKawasaki/items/185d34814eb9f7ac7ef3
• http://www.slideshare.net/tkudo/openid-connect-devlove
• http://mnakajima18.hatenablog.com/entry/2016/05/04/205713

OpenIDとOAuth

protocol

• http://christina04.hatenablog.com/entry/2015/01/26/194841
• http://causeless.seesaa.net/article/372627135.html
• http://www.atmarkit.co.jp/ait/articles/1209/27/news138.html
• http://d.hatena.ne.jp/hsksnote/20110807/1312685462

Authentication and Authorization

• http://www.sakimura.org/2011/05/1087/

OAuth / Facebook

• http://bang.hateblo.jp/entry/20101103/1288799126
• http://qiita.com/ynunokawa/items/4c9147d2743d36e63832

refresh_token

• http://qiita.com/r7kamura/items/3e03471e02ea9ab5902a

Problem

• http://www.sakimura.org/2012/02/1487/
• http://qiita.com/kozayupapa/items/d99b3a77ece0dbe9b7c8

OpenID connect

第三回 Relying Party の実装例 ～passport～

• https://www.ogis-ri.co.jp/otc/hiroba/technical/openid-connect/chap1.html
• https://lists.forgerock.org/pipermail/openam/
• https://github.com/k-tamura/openam-book-jp/blob/master/setup.md

about Stateless Sessions

• http://wadahiro.hatenablog.com/
• http://www.slideshare.net/ForgeRock/customer-scale-stateless-sessions-and-managing-highvolume-digital-services

Kerberos V5 状態コード

• https://docs.oracle.com/cd/E19455-01/806-4504/6jdj2sbik/index.html
• https://www.ipa.go.jp/security/rfc/RFC1510-00JA.html

SAML

• http://www.atmarkit.co.jp/ait/articles/0210/02/news002.html
• http://blog.cybozu.io/entry/4224
• https://docs.microsoft.com/ja-jp/azure/active-directory/active-directory-single-sign-on-protocol-reference
• https://goodpic.com/mt/archives2/2008/01/openid_oauth.html