i have an spa where no user is logged in but needs to be authorised.
Does that mean i have to use oauth2, or can i use openid connect with no user.
since i won't have a subject i think it has to be oauth2, but all the articles use the words openid connect (i know the structures are roughly the same), i just want to know if putting openid as a scope when not have a user will mean it doesn't match the
protocal.
Partly because I was looking through identityserver 4 code,and has to have openid as a scope, but seems to allow anonymous users.
Participant
1861 Points
2836 Posts
A quick oauth2 openid connect question
Jun 26, 2020 02:32 PM|EnenDaveyBoy|LINK
Hi
i have an spa where no user is logged in but needs to be authorised.
Does that mean i have to use oauth2, or can i use openid connect with no user.
since i won't have a subject i think it has to be oauth2, but all the articles use the words openid connect (i know the structures are roughly the same), i just want to know if putting openid as a scope when not have a user will mean it doesn't match the protocal.
Partly because I was looking through identityserver 4 code,and has to have openid as a scope, but seems to allow anonymous users.