Security
- Karsten Markmann
Access to the Link REST Api is secured using IdentityServer which implements the OpenID Connect and OAuth2 authentication standard protocols. Authorization is controlled by users, groups, roles and permissions, which are configured in Link.
Authentication and Authorization
While often used interchangeably, authentication and authorization represent fundamentally different functions. In simple terms, authentication is the process of verifying who a user is, while authorization is the process of verifying what they have access to.
Comparing these processes to a real-world example, when you go through security in an airport, you show your ID to authenticate your identity. Then, when you arrive at the gate, you present your boarding pass to the flight attendant, so they can authorize you to board your flight and allow access to the plane.
Read the specifications here:
Content on this page:
The information on this page is based on Link 2.10