Authorization and Authentication in Concept
What is Authentication and Authorization?
Authentication: This is when you provide credentials like username and password and the application authenticates that you are a user. When you hit submit on a login form, the web application will then authenticate you.
Authorization: After you’ve been authenticated, it doesn’t mean you can do whatever you want. Whenever you take an action in an application there has to be a check to make sure you have the authority to take that action.