From the course: ASP.NET MVC 5 Identity: Authentication and Authorization
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Authentication vs. authorization
From the course: ASP.NET MVC 5 Identity: Authentication and Authorization
Authentication vs. authorization
- [Instructor] By using membership or asp.net identity framework, we can authenticate the users. Normally, applications have a login page where users enter their username or email and a password. If these credentials already exist, then the user is granted access, or in other words, we can authenticate who the user is. So authentication is the process of validating the identity of a registered user who is accessing a service or application. But in a secure application, just authenticating the user is not enough. There is always a certain level of security measurements that we, as developers, need to take into consideration when building a secure app. We need to know exactly who has access to what. Imagine you are building an application for university. The application wants to give access to administrators, students, and teachers, but of course, students can not see what teachers are able to see and vice versa. And this is when authorization comes into play. Authorization is the…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.