OAuth 2.0 and OpenID Connect are essential open standards for API access authorization. In order to implement them properly, you need to follow-up the standardization process and adopt the latest practices. It is merely possible for almost all of service providers.

Existing solutions would provide access authorization features to mitigate the difficulties. But their weaknesses in scalability, flexibility, migration process and standards compliance are another concern.

This white paper covers these topics and describes the value proposition of the new architecture enabled by Authlete’s unique approach.

• OAuth and OIDC are the Foundation for Open APIs
• Difficulties in Adopting OAuth/OIDC
• Access Authorization Capabilities in Existing Solutions
  • IDaaS
  • IAM Software
  • API Gateways
• Authlete: A New Approach
• Integration with Existing Systems
• A Broad Range of Use Cases