Skip to end of metadata
Go to start of metadata

Authorization is based on authentication. When the identity of a client is known, authorization implements the rules which control (a) which resources a client may access, and (b) which parts of those resources are accessible.

Authorization in the webservice is role-based. Each account is assigned to a role; and roles are assigned sets of privileges based on which access is granted.

  • No labels