OpenID Connect just got ratified. I know this question has been asked in the past but I'm looking for a current list of OpenID Connect providers.

The ones I already know of

• Google
• PayPal
• Amazon

The only ones that I've been able to find that allow the use of the scope "openid" (which is supposedly required from what I've read) are the following, which both give detailed steps on how to set this up, which I've verified using a java client:

Salesforce:

https://developer.salesforce.com/page/Inside_OpenID_Connect_on_Force.com

Google:

https://developers.google.com/accounts/docs/OAuth2Login#sendauthrequest

eBay - Oreo Project - Very "raw" and not really integrated with eBay, but works

• authorize url: https://openidconnect.ebay.com/oreo/authorize.jsp

• token url: https://openidconnect.ebay.com/oreo/token.jsp

• userInfo url: https://openidconnect.ebay.com/oreo/openidconnect/get-user-info.jsp

• register for a client id/secret here: https://openidconnect.ebay.com/oreo/start.jsp

• Note: You need to pass a "nonce" parameter when authorizing, but nonce=test seems to work fine. Here's a sample authorize url that includes a nonce:

  https://openidconnect.ebay.com/oreo/authorize.jsp?nonce=test&client_id=YOUR_CLIENT_ID&response_type=code&scope=openid&redirect_uri=YOUR_REDIRECT_URL

• All info for this pulled from this blog post

Note: For alot of these things, you need to have a public url to test against - which is a pain for developers that want to debug this as they're building it. You can edit your hosts file to switch some public domain to point to your local machine, since the redirects all happen in the browser, and are synchronous).

e.g. in your hosts file:

127.0.0.1 www.mytestsite.com

Then use something like so for your callback url, and it'll load your dev server when redirected to:

http://www.mytestsite.com/callback

This is one list of known public OpenID Connect IdPs, together with links to the discovery metadata of each service (in standard JSON format):

http://c2id.co/1r