1. Setup, configuration and migration

  1. How to run the Connect2id server in Docker
  2. Deployment checklist
  3. FAPI checklist
  4. How to configure the Connect2id server for OpenID Federation 1.0
  5. How to evaluate the Connect2id server at a host other than localhost
  6. How to setup a TLS termination proxy for Mutual TLS / X.509 certificate client authentication
  7. How to setup the Connect2id server with global DynamoDB tables, replication strategies
  8. How to setup a multitenant Connect2id server
  9. How to configure and switch between issuer URL aliases
  10. How to configure and monitor the Hikari JDBC connection pool
  11. How to migrate Connect2id server data
  12. Apache Tomcat tips and tricks

2. Integration and customisation

  1. How to integrate your login page and auth factors
  2. How to integrate a logout page
  3. How to manage OAuth 2.0 scopes
  4. How to configure, manage and validate access tokens
  5. How to implement OpenID Connect eKYC / Identity Assurance
  6. How to federate a third-party identity provider or social login
  7. How to federate identities in mobile apps
  8. How to implement OpenID for verifiable presentations
  9. User session timeouts explained
  10. How to implement account switching
  11. How to configure and consume explicitly typed ID tokens and UserInfo JWTs
  12. How to implement custom OAuth 2.0 grants
  13. How to implement client-based sessions
  14. CORS OAuth 2.0 response mode with prompt=none for SPAs
  15. How to become an External Authentication Method (EAM) provider for Microsoft Entra
  16. How to implement a Service Provider Interface (SPI) and package a JAR

3. OAuth 2.0 / OpenID Connect API usage

  1. How to register an OAuth 2.0 client / OpenID Connect relying party
  2. How to issue and use an initial access token for client registration
  3. How can an OAuth 2.0 client authenticate
  4. How to request OpenID claims and steer their delivery
  5. Pairwise (encrypted) subject identifiers
  6. How a backend service can use the OAuth 2.0 JWT grant to obtain tokens on user's behalf
  7. How to use a redirection URI template

4. Clustering

  1. Load balancing and health checks
  2. How to create a server cluster in AWS
  3. How to debug Infinispan / JGroups
  4. How to set up a dedicated node for expiration

5. Monitoring

  1. How to monitor the server
  2. Key login and session metrics
  3. How to detect and purge disused clients

6. Development tips

  1. How to setup HTTPS for localhost OAuth 2.0 web client testing and development