The new OIDC authentication enhancement uses the OIDC “sub” (subject) claim to identify users instead of relying on email addresses. Since the “sub” claim is a unique and permanent identifier assigned by the identity provider, it ensures consistent and reliable user recognition even if a user’s email changes or multiple providers share the same address. This improves account stability, reduces login mismatches, and enhances overall security and user experience.
Key Benefits:
Reliable user identification: Ensures consistent recognition of users even if their email address changes.
Eliminates account mismatches: Prevents conflicts caused by identical email addresses across different identity providers.
Improved security: Uses the permanent and unique OIDC “sub” claim, reducing the risk of identity errors.
Better user experience: Provides seamless authentication and minimizes login or access issues.