xunliu commented on PR #6842: URL: https://github.com/apache/gravitino/pull/6842#issuecomment-2787976405
> The distinction between Authentication and Authorization is as follows: > > * `Authentication` is the process of verifying the identity of a user, system, or device, with the primary goal of confirming the legitimacy of the requesting entity. For example, when a user logs into a system by providing a username and password, the system validates these credentials against stored records. Additional methods include biometric verification (e.g., fingerprints, facial recognition) and multi-factor authentication (MFA). > * `Authorization` occurs after successful authentication and focuses on defining the scope of access privileges granted to the authenticated entity. It restricts the operations a user can perform on specific resources. For instance, a system administrator might be granted permissions to delete data, while regular users are only permitted to view data. Authorization mechanisms, such as role-based access control (RBAC), attribute-based policies (ABAC), or access control lists (ACLs), are used to enforce these restrictions. @hdygxsj Thank you, I think it's OK. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: commits-unsubscr...@gravitino.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
