Published: March 2020
Authentication vs. authorisation
The purpose of my article is to explain the difference and prevent confusion. I want to give you two easy examples you can remember.
Author: Markus A. Wolf Published: March 2020
Taipei / Taiwan – UX Designer and product owner - worked in Germany, California / Silicon Valley and now Taiwan for international clients.
Examples - Some real world cases
I will give you an example. You go to a website to see your order history. You already have an account - of course - and you enter your username, password and hit enter. Now the login process starts and at first the website checks your identity this is called authentication. Is your password the right for this username? If yes, the next step starts. Now the website checks if you have access to your order history and if you are allowed to order some stuff. If everything was fine you can see your last orders - authorisation.
Here is another shorter version. At first you have to authenticate yourself to know if you are the author of a web article and authorise yourself to check if you have the right to change the text.
BTW. The two words authentication and authentification are the same and often used “by non-native speakers who aren’t aware that it’s less idiomatic in English” so I had to learn it too :-).