From the course: Spring 6: Spring Security
Join today to access over 25,300 courses taught by industry experts.
Authentication vs. authorization
From the course: Spring 6: Spring Security
Authentication vs. authorization
- [Instructor] Authentication and authorization are all too often misunderstood, overlooked, or confused by application developers. But I want to provide a simple baseline of the meaning of these words and how they apply to software so that we can level set before we move into this course. Let's start with authentication, also commonly called AuthN. Authentication is the process of determining the who, specifically and more technically, it is the process of determining that a principal is who they say they are. Now, this goes beyond a simple username and password scenario, but that can be a method of authentication. A point to remember when talking about principals in authentication is that systems as well as humans can be principals. Often we leverage a process of a system calling another system. In a microservices world, that tends to happen a lot. We can leverage Spring Security to secure system to system calls the same way we would use for user to system calls. Now, Spring…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.