OpenID和OAuth有什么区别? [英] What's the difference between OpenID and OAuth?

问题描述

我真的是想了解OpenID和OAuth之间的区别吗?也许它们是两个完全分开的东西?

I'm really trying to understand the difference between OpenID and OAuth? Maybe they're two totally separate things?

推荐答案

OpenID 与身份验证有关(即证明谁您是)， OAuth 是关于授权的(即，无需处理即可授予对功能/数据/等的访问权限.并带有原始身份验证.)

OpenID is about authentication (ie. proving who you are), OAuth is about authorisation (ie. to grant access to functionality/data/etc.. without having to deal with the original authentication).

OAuth可以在外部合作伙伴站点中使用，以允许访问受保护的数据而无需重新认证用户.

OAuth could be used in external partner sites to allow access to protected data without them having to re-authenticate a user.

博客文章" OpenID从用户角度比较OAuth "，从用户角度和"

The blog post "OpenID versus OAuth from the user’s perspective" has a simple comparison of the two from the user's perspective and "OAuth-OpenID: You’re Barking Up the Wrong Tree if you Think They’re the Same Thing" has more information about it.

这篇关于OpenID和OAuth有什么区别?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！