Skip to content
Connect2id

Guides

1. Setup, configuration and migration

  1. How to run the Connect2id server in Docker
  2. Deployment checklist
  3. FAPI checklist
  4. How to configure the Connect2id server for OpenID Federation 1.0
  5. How to evaluate the Connect2id server at a host other than localhost
  6. How to setup a TLS termination proxy for Mutual TLS / X.509 certificate client authentication
  7. How to setup the Connect2id server with global DynamoDB tables, replication strategies
  8. How to setup a multitenant Connect2id server
  9. How to configure and switch between issuer URL aliases
  10. How to configure and monitor the Hikari JDBC connection pool
  11. How to migrate Connect2id server data
  12. Apache Tomcat tips and tricks

2. Integration and customisation

  1. How to integrate your login page and auth factors
  2. How to integrate a logout page
  3. How to manage OAuth 2.0 scopes
  4. How to configure, manage and validate access tokens
  5. How to implement OpenID Connect eKYC / Identity Assurance
  6. How to federate a third-party identity provider or social login
  7. How to federate identities in mobile apps
  8. How to bind IdP web sessions to browser fingerprints
  9. How to enable and manage native SSO for mobile and desktop apps
  10. How to bootstrap a web session for a native app user
  11. How to implement OpenID for verifiable presentations
  12. User session timeouts explained
  13. How to implement account switching
  14. How to configure and consume explicitly typed ID tokens and UserInfo JWTs
  15. How to implement custom OAuth 2.0 grants
  16. How to implement client-based sessions
  17. CORS OAuth 2.0 response mode with prompt=none for SPAs
  18. How to become an External Authentication Method (EAM) provider for Microsoft Entra
  19. How to implement a Service Provider Interface (SPI) and package a JAR

3. OAuth 2.0 / OpenID Connect API usage

  1. How to register an OAuth 2.0 client / OpenID Connect relying party
  2. How to issue and use an initial access token for client registration
  3. How can an OAuth 2.0 client authenticate
  4. How to request OpenID claims and steer their delivery
  5. Pairwise (encrypted) subject identifiers
  6. How a backend service can use the OAuth 2.0 JWT grant to obtain tokens on user’s behalf
  7. How to use a redirection URI template

4. Clustering

  1. Load balancing and health checks
  2. How to create a server cluster in AWS
  3. How to debug Infinispan / JGroups
  4. How to set up a dedicated node for expiration

5. Monitoring

  1. How to monitor the server
  2. Key login and session metrics
  3. How to detect and purge disused clients

6. Development tips

  1. How to setup HTTPS for localhost OAuth 2.0 web client testing and development