What is OpenID Connect and how is it different from OAuth 2.0?

OAuth 2.0 is for authorization (access to resources). **OpenID Connect (OIDC)** adds an identity layer on top of OAuth to enable authentication. OIDC introduces: - **ID token** (identity claims) - Standardized discovery and user info endpoints Use OAuth when you need delegated access; use OIDC when you need login/authentication via an identity provider.