LinkedIn Migration to OpenID Connect from OAuth
LinkedIn has announced their decision to migrate from OAuth protocols to OpenID Connect protocols on January 10, 2023. As per their announcement, they have implemented this change to provide an additional identity layer of security over the OAuth protocols. This change will affect our users who have implemented the LinkedIn Identity Provider’s Authentication for their Catalyst application.
The new scopes that you will be configuring in the LinkedIn developer portal are listed below.
Scope | Purpose |
---|---|
openid | To indicate the application wants to use OIDC to authenticate the member. |
profile | To get the member's lite profile including their id, name, and profile picture. |
To get the member's email address |
For more information on OpenID Connect protocols, visit their official documentation.
In light of this new change, we urge you to regenerate your authentication tokens using OpenID Connect protocols. The steps to generate ClientID and Client Secret tokens can be found our help documentation.
LinkedIn has additionally stated that if their end-users have implemented LinkedIn identity providers for their applications before August 2023, they will continue to support OAuth and OpenID Connect protocols for them for an unspecified extended time period. However, given the ambiguity on it’s deprecation date, we urge you to to migrate your projects that use LinkedIn signups from OAuth protocols to OpenID Connect protocols as soon as possible.
Last Updated 2024-02-23 14:24:20 +0530 +0530
Yes
No
Send your feedback to us