03. Authentication vs Authorization

JAVA C2 L5 03 Authentication Vs Authorization

Authentication

Authentication is about validating the identity of a client attempting to call a web service. Typically, identity is validated with user credentials, such as a user name and password.

Authorization

Authorization is the next step after authentication. So once a client is authenticated (they have proven who they are), what do they have access to? For example, what data can they view, are they allowed to change that data, etc.

Identify TWO ways to authenticate with a web service.
SOLUTION:
  • API Key
  • User name and password

Next Concept