← Glossary · identity
OpenID Connect (OIDC)
A modern, JSON-based protocol for identity and authentication, layered on OAuth 2.0.
OIDC accomplishes most of what SAML does but with smaller payloads, easier debugging, and better support for mobile and SPA clients. New SaaS apps tend to default to OIDC; older enterprise apps default to SAML. Both protocols are interoperable through identity providers like Okta, which can speak SAML to one app and OIDC to another from the same user identity.