OpenID Connect 1.0 is an authenticationAuthentication Authentication determines whether the user is who they claim to be. layer built on OAuth 2.0 where the identity provider that runs the authorizationAuthorization Authorization determines whether an authenticated user is allowed to access a specific resource or take a specific action. server also holds the protected resource that the third-party application aims to access.