OIDC
An identity layer built on OAuth 2.0 that adds a standardized identity token (id_token) for authenticating users, using JSON instead of XML.
In more detail
OpenID Connect is the modern federation standard. Compared to SAML, the protocol is JSON-based, lighter on the wire, and easier for newer applications to integrate. Most modern SaaS expose OIDC alongside SAML.
OIDC scopes the identity exchange to the OAuth 2.0 authorization model, which is the same model the customer uses to authorize third-party API access. The two flows compose well in modern stacks.
Where this shows up at Ceven
Ceven's primary SSO path is OIDC for new customers and SAML for customers already standardized on it. Both flows write the same audit log entry, share the same JIT user-creation logic, and feed the same JML lifecycle downstream.