Autorisierung (EN)

Authorization Process

sequenceDiagram     participant User     participant Application     participant Authentication system     participant Authorization system     participant Resource          User->>Application: Request access     Application->>Authentication system: Verify identity     Authentication system-->>Application: Identity confirmed     Application->>Authorization system: Check permissions     Authorization system-->>Application: Grant/deny access rights     Application->>Resource: Grant/deny access 

In Context

• Typically used together with authentication
• Related to: Access control, Permissions, Role-based access control (RBAC)
• Example use case: Banking applications that set different transaction limits for different customer groups