--- title: Introducing the Ping (ForgeRock) SDKs for OIDC login description: Server support: component: sdks version: latest page_id: sdks:oidc:index canonical_url: https://docs.pingidentity.com/sdks/latest/oidc/index.html revdate: Mon, 3 Jul 2023 18:00:37 +0100 keywords: ["OAuth 2.0", "OpenID Connect", "SDK"] page_aliases: ["sdks:tutorials/javascript/pingone/index.adoc", "authentication:centralizedlogin.adoc"] section_ids: use_cases: Use cases security_considerations: Security considerations next_steps: Next steps --- # Introducing the Ping (ForgeRock) SDKs for OIDC login | | | | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | ***Server support***:- [icon: check-square-o, set=fa]PingOne - [icon: check-square-o, set=fa]PingOne Advanced Identity Cloud - [icon: check-square-o, set=fa]PingAM - [icon: check-square-o, set=fa]PingFederate | ***SDK support***:- [icon: check-square-o, set=fa]Ping (ForgeRock) SDK for Android - [icon: check-square-o, set=fa]Ping (ForgeRock) SDK for iOS - [icon: check-square-o, set=fa]Ping (ForgeRock) SDK for JavaScript | The Ping (ForgeRock) SDKs can help you to login to your authorization server using an OpenID Connect flow, and leveraging the server's own UI to authenticate your users in your apps. We call this OIDC login, but it was previously known as centralized login. With this option, you reuse the same, centralized UI for login requests in multiple apps and sites. When a user attempts to log in to your app they are redirected to your server's central login UI. * In JavaScript apps, you can attempt to renew tokens in the background, or redirect the browser to the server UI if authentication is required. * Android and iOS apps use an in-app browser, rather than a webview, to launch the server UI. After the user authenticates, they are redirected back to your app. Changes to authentication journeys or DaVinci flows are immediately reflected in all apps that use OIDC login without the need to rebuild or update the client app. Likewise, any features your server's UI supports are also available for use in your web or mobile apps. ![android central](../_images/android_central.gif)Figure 1. Centralized login in Android ## Use cases [icon: check, set=fas]If you require a consistent UI and user experience (UX) in all your apps and sites, using centralized login may be the best option. [icon: check, set=fas]Simple branding and control over your authentication UX is sufficient. [icon: check, set=fas]Your mobile apps use browser-based single sign-on. ## Security considerations [icon: check, set=fas]Using centralized login in apps built by a third party is safer than using embedded login. [icon: check, set=fas]Third parties cannot access user credentials. [icon: check, set=fas]User credentials are authenticated in one domain/origin and not sent elsewhere for authentication. [icon: check, set=fas]Your apps and sites can use browser-based single sign-on. ## Next steps [Configure the Ping (ForgeRock) SDKs for OIDC login](configure-the-sdks.html) [Tutorials](tutorials.html)