OpenID Connect certification


Akamai Identity Cloud holds several OpenID Provider certifications. These certifications, awarded after the successful completion of a series of conformance tests, offer assurance that Identity Cloud matches the capabilities of other certified OpenID providers. In turn, this tells you that, when it comes to OpenID Connect, Identity Cloud will do everything you expect it to, and will do so in the ways that you expect it to.

Identity Cloud’s OpenID Provider certifications include the following.

  • Basic OP. Identity Cloud passed all tests conducted when an authorization request includes the argument response_type=code.

  • Implicit OP. Identity Cloud passed all tests conducted when an authorization request includes the argument response_type=token and when an authorization request includes the argument response_type=id_token token.

  • Hybrid OP. Identity Cloud passed all tests conducted for both Basic OP certification and Implicit certification.

  • Config OP. Identity Cloud passed all tests required for accessing the Hosted Login discovery document (published at the .well-known/openid-configuration endpoint).

  • Form Post OP. Identity Cloud passed all the tests conducted when an authorization request includes the argument response_mode=form_post.

Detailed information about the testing and about Identity Cloud’s scores are available on the OpenID Foundation website. See Supported response types and Supported response modes for more information about response types and response modes.

📘

Identity Cloud made no effort to be certified for Dynamic OP or for 3rd Party-Init OP. These profiles involve dynamic client registration, a process by which OpenID Connect clients are allowed to register themselves with an authorization server. Identity Cloud doesn’t support dynamic client registration.


Did this page help you?