Authorization

/ˌoʊ-pən-aɪ-di kəˈnɛkt/

n. “One login to rule them all… with modern flair.”

OpenID Connect is an authentication protocol built on top of the OAuth 2.0 framework. It allows clients—typically web and mobile applications—to verify the identity of a user based on the authentication performed by an identity provider (IdP) and to obtain basic profile information about that user in a secure and standardized way.

/ˈoʊ-ˌɔːθ/

n. “Let someone borrow your keys without giving them the whole keyring.”

OAuth, short for Open Authorization, is a protocol that allows secure delegated access to resources without sharing credentials. Instead of giving a third-party app your username and password, OAuth enables the app to access certain parts of your account on your behalf via tokens that can be scoped and revoked.