AuthN is: I claim to be dreadgoat, but how can I prove it? (login, password, mfa)
AuthZ is: Now that you know I am dreadgoat, do I have permission to post this comment? (access control, roles, attributes)
I know what they are and the differences, I thought the N and Z would somehow be an easy way to work it out/remember. But the trick is just to remember which is which.
And even with ‘AuthN’ vs ‘AuthZ’ it always takes me a minute to spell them out and work out which is which
What’s this authN / authZ business?
AutheNtication vs. AuthoriZation, I believe
How’s that supposed to help?
AuthN is: I claim to be dreadgoat, but how can I prove it? (login, password, mfa)
AuthZ is: Now that you know I am dreadgoat, do I have permission to post this comment? (access control, roles, attributes)
I know what they are and the differences, I thought the N and Z would somehow be an easy way to work it out/remember. But the trick is just to remember which is which.
N comes before Z in the alphabet, and you must always AuthN before you can AuthZ. Easy mnemonic.
This is a great explanation, thank you.
I deal mainly with authorization and I’m not sure I’ve ever had the differences explained this simply (so I incorrectly lump them together)
deleted by creator
It doesn’t
AutheNtication
Ahh, that would make more sense, thank you - corrected
That’s the thing, nobody really knows!