A working group of the OpenID Foundation
How to Add Support for Identity Providers
Benefit from increased security, engagement and an improved user experience
There are a number of reasons why organizations turn to identity providers to help streamline the login process for their websites.
- Need to convert anonymous visitors to engaged registered users on your website? Simplify the login and registration process for your users by giving them the option to sign in with one or more of the identity providers that they use most.
Traditional account registration has significant repercussions. In a study by Blue Research, not only does it reduce registration and conversion rates, 4 out of 5 users are increasingly bothered by the need to create new accounts. Additionally, PC World, one of the most trusted tech news websites on the web, reported that adding support for identity providers through Social Login increased registration rates 40 percent.
Providing a simpler path to signing in helps you increase registration rates while reducing the burden on your users to remember a new username and password.
- If security is not the core competency of your business, take advantage of the work identity providers have already done.
- Identity providers use advanced products to protect their login systems, and the largest providers have their own dedicated security teams. These advanced systems frequently involve multi-factor authentication that is expensive, and which users are more willing to use when it protects their account on a large number of websites.
- If you want to offer a seamless user experience across a network of websites, or enable easy access to applications across business partners, then single sign-on is for you.
By implementing SSO and federating identity, you can remove the barriers of signing in across your web properties. Your users sign in once and can easily navigate applications and websites with their online identities.
Identity federation is widely done today, including consumer website applications and enterprise deployments. Combined with Account Chooser, you can provide your users with a safer and easier experience as they interact with your web properties.
- Organizations that want to make their identity credentials available across the web should consider becoming an identity provider.
- If your organization provides an email service to consumers or your employees, you should provide an identity provider they can use to login with that email on other websites. Otherwise your users will reuse their passwords on other websites and compromise the security of your organization's login system.
If your website exposes APIs to access any other type of secure user data, then you can also act as an identity provider to increase the value of the APIs you provide to other websites.
There are products available to help add identity provider support to your website, including modules written for many popular content management systems and web frameworks.