本文翻译自:Authentication versus Authorization
What's the difference in context of web applications? Web应用程序上下文有什么区别? I see the abbreviation "auth" a lot. 我经常看到缩写“ auth”。 Does it stand for auth -entication or auth -orization? 它代表auth -entication还是auth -orization? Or is it both? 还是两者?
#1楼
参考:https://stackoom.com/question/RVeM/认证与授权
#2楼
In short, please. 简而言之,请。 :-) :-)
Authentication = login + password (who you are) 身份验证 =登录名+密码(您是谁)
Authorization = permissions (what you are allowed to do) 授权 =权限(您可以执行的操作)
Short "auth" is most likely to refer either to the first one or to both. 简短的“ auth”最有可能指第一个或两者。
#3楼
Adding to @Kerrek's answer; 添加到@Kerrek的答案;
Authentication is Generalized form (All employees can login in to the machine ) 身份验证采用通用形式(所有员工均可登录计算机)
Authorization is Specialized form (But admin only can install/uninstall the application in Machine) 授权为专用形式(但管理员只能在Machine中安装/卸载应用程序)
#4楼
I prefer Verification and Permissions to Authentication and Authorization. 我更喜欢验证和许可而不是认证和授权。
It is easier in my head and in my code to think of "verification" and "permissions" because the two words 在我的脑海和代码中,更容易想到“验证”和“许可”,因为这两个词
- don't sound alike 听起来不一样
- don't have the same abbreviation 没有相同的缩写
Authentication is verification and Authorization is checking permission(s). 身份验证是验证,授权是检查权限。 Auth can mean either, but is used more often as "User Auth" ie "User Authentication" 身份验证既可以表示,也可以用作“用户身份验证”,即“用户身份验证”
#5楼
Authentication is the process of verifying the proclaimed identity. 身份验证是验证所声明身份的过程。
- eg username/password 例如用户名/密码
Usually followed by authorization , which is the approval that you can do this and that. 通常后跟授权 ,这是您可以执行此操作的批准。
- eg permissions 例如权限
#6楼
Authentication is the process of verifying your log in username and password. 身份验证是验证登录用户名和密码的过程。
Authorization is the process of verifying that you can access to something. 授权是验证您可以访问某些内容的过程。