Search…
Getting Started
Technical overview
Overview
Architectural Decision Records
API Design Guide
Island.is Authentication Service
Authentication Flows
Authorising API Endpoints
Configuration
Delegations (BETA)
Environments
IAS Onboarding Questionnaire
Tools and Examples
Integration Options
Integrate IAS in Postman
Scopes and Tokens
Session Lifecycle
Terminology
Code Reviews
Code Standards
Devops
Feature Flags
Monorepo
Personas
Pósthólfið
Teamwork
Technical Direction
X-Road / Straumurinn
Repository
AWS Secrets
External Contributions
Generating a New Project
GitBook Contributions
OpenAPI
Auto Generated Schemas
Workspace Settings
Apps
Air Discount Scheme
API
Application System
Financial Aid System for Samband Sveitarfélaga
Judicial System
Reference Backend
Reference Next App
Service Portal
Services
Car Recycling - Skilavottorð
Web
Libs
API
API Catalogue
Application
Auth
Auth API Lib
Auth Nest Tools
Clients
CMS
CMS Translations
Content Search Index Manager
Content Search Indexer
Content Search Metrics
Content Search Toolkit
Contentful Extensions Overview
Dokobit Signing
Email Service
Feature Flags
Health Insurance
Island UI
Localization
Message Queue
Nest Modules
Next Ids Auth Lib
NOVA SMS
Plausible
React Libraries
Regulations
Residence History
Service Portal
Shared
Testing
User Monitoring
Reference
Problems
Misc
Guide: Adding a Payment Step to an Application
Guide: Enable Organisations to Make Requests to an Application
GitBook Template
Glossary
Powered By GitBook
Island.is Authentication Service
Digital Iceland has created the Island.is Authentication Service (IAS) as a modern solution to help government organisations authenticate users online. The service is built on open standards including OAuth2 and Open ID Connect and includes scope-based authorisation functionality to support different kinds of delegations as well as user-based API authorisation across organisational boundaries.
Delegations allow individuals to access digital services on behalf of another individual or legal entities. E.g. guardians can access services on behalf of children they ward, and employees can access services on behalf of the company they work for. Note that with delegations, as opposed to impersonation, each delegated access includes cryptographically signed claims about the actual authenticated user.
This documentation is meant for developers and software architects at Service Providers (SPs) planning to integrate with the IAS. It describes the architecture of the authentication service and how to use it.
A full documentation of Open ID Connect (OIDC) and OAuth2 is outside the scope of this documentation. We recommend reading the following resources before integrating with IAS.

Table of contents

Previous
Versioning
Next
Authentication Flows
Last modified 5mo ago
Copy link