Authentication
|
Authorization |
Authentication verifies who you are
|
Authorization verifies what you are authorized to do
|
Authenticating a user on a website means that you verify that this user is a valid user, that is, verifying who the user is using username/password or certificates, etc
|
Authorization is the process of verifying if the user has rights/permission to access certain resources or sections of a website,
|
Example : When u login to access some site then your logon credential (userid/password) identifies
|
Example : After successful logon, you will be granted specific role or privileges to access the site.
|