Proven flexibility to meet your most demanding identity and production requirements. Engineered for 24/7/365 uptime, distributed operation and low TCO.
-
Web and device SSO with OpenID Connect
Issue ID tokens to sign users into web, mobile and desktop applications. Devise your own authentication and consent journeys, enjoying full control over the UX.
-
Provision identities
Operate a fully fledged OpenID provider, at the level of assurance required by your applications. Federate social and partner logins, supply verified data for IdA / eKYC.
-
Secure APIs with OAuth 2.0 & 2.1
Protect your web APIs with access tokens, optionally locked with mTLS or DPoP. The entire lifecycle of tokens can be managed, their codecs and introspection customised.
-
Operate with confidence 24/7/365
Clustering for high-availability and servicing multi-million user bases is supported out of the box. 100+ metrics to monitor usage, anomalies and performance in real time.
Proven in national eID gateways, mobile banking, and large-scale global applications
We serve our customers by delivering continuous improvements, attention to detail and thoughtful curation of technology standards. Along the 4 critical axes of security, reliability, performance and the maintenance of conceptual integrity.
- Banking
- Content Management
- Data Centre
- Education
- eHealth
- eID
- eGovernment
- eKYC
- Fintech
- Gaming
- Manufacturing
- Media
- Mobile Apps
- Research
- Retail
- SaaS
- System Integrators
- Travel
“Love the simple on-prem license, but can we purchase a hosted plan?”
Essentials offering for a hosted and managed highly-available Connect2id server cluster
User credentials and data remain on your systems, under your direct control
Deploy in a region of your choice
OpenID and OAuth standards
Internet standards can hold hidden nuggets of opportunity for your applications and business. To fully benefit from them, you need to get them right.
-
OpenID Federation and the trust chain explained
OpenID Federation and the trust chain explained
Establishing trust at Internet scale
-
OpenID Connect native SSO explained
OpenID Connect native SSO explained
Finally, a UX-friendly login flow for multi-app vendors
-
OpenID Connect Identity Assurance / eKYC
OpenID Connect Identity Assurance / eKYC
The verified identities that the digital economy needs
-
OAuth 2.1 explained
OAuth 2.1 explained
New baseline security and interoperability for OAuth
Long-term open source
Since 2012, the JWT cryptography and the OAuth 2.0 / OpenID Connect layer of the Connect2id server have been developed and maintained as open source, benefiting 1000s of projects and programmers.
Users
Apache Camel
Apache Hive
Apache IoTDB
Atlassian
CAS
Cloud Foundry
Eclipse
GlassFish
Gravitee
IBM
KeyCloak
Mastercard
Micronaut
Microsoft Azure
Okta
OpenBanking
Pac4j
Snowflake
Spring Security
Stripe
Vaadin
VMWare
WildFly
XWiki
-
Nimbus JOSE+JWT
The leading Java and Android library for JSON Web Tokens (JWT). Supports all standard signature (JWS) and encryption (JWE) algorithms as well as recent developments such as secp256k1, ECDH-1PU and XC20P.
-
87.4%
-
A
-
0
-
-
Nimbus OAuth 2.0 / OpenID Connect SDK
Comprehensive Java SDK for OAuth 2.0 and OpenID Connect applications. Covers over 30 IETF and OIDF specifications and extensions, including ground-breaking OpenID Federation for post-X.509 trust infrastructure.
-
90.0%
-
A
-
0
-
Blog
-
Connect2id server 18.1 allows control of the user identity hint types in CIBA
Connect2id server 18.1 allows control of the user identity hint types in CIBA
Controlling the CIBA hint types per client is a simple yet powerful measure to enforce least privilege, minimise abuse and have safer CIBA deployments
-
Connect2id server 18.0 supports CIBA, native IdP apps and session binding via UA fingerprints and DPoP
Connect2id server 18.0 supports CIBA, native IdP apps and session binding via UA fingerprints and DPoP
Opportunities for new fintech, telco, healthcare and consumer tech applications
-
Connect2id server 17.2.1
Connect2id server 17.2.1
Maintenance update
-
Connect2id server 17.2
Connect2id server 17.2
Software statement verifier (SSV) plugin update