Our customer had rolled out a series of web portals and mobile applications for online sales and customer loyalty boost. One difficult aspect of this go-to-market initiative was to allow its clients maintain a single user and profile throughout the entire B2C range of applications.
We have implemented a solution that provides a an identity layer on top of the OAuth protocol. This solution enables Clients to check the identity of the End-User based on the authentication performed by an Authorization Server, as well as to obtain basic profile information about the End-User in an interoperable and REST-like manner.
Auth is an open standard for authorization, commonly used as a way for Internet users to log in to third party websites using their Google, Facebook, Microsoft, Twitter, One Network, etc. accounts without exposing their password.