Authorisation is the process of confirming the access rights of a user. Authorisation is used to understand whether a person or a process has the right to perform a certain action, such as reading or writing a certain file (access permissions).
Authorisation is distinct from authentication, which looks at determining the identity of a user. A user’s identity may have many different authorisations allocated to it for different actions.
Last updated: 3 September 2017