Authorization API standard

Authorization services are a critical part of the security architecture of an application. After a user passes the authentication process, authorization services proceed to enforce the business policy by determining what services and information the user can access.

For example, a user might access a web-based retirement fund. The user can view personal account information after an authorization server verifies the identity, credentials, and privilege attributes of that user.

The standards-based authorization API (aznAPI) allows applications to call the centralized authorization service. The authorization API eliminates the necessity for developers to write authorization code for each new application.

The authorization API allows businesses to standardize all applications on a trusted authorization framework. With the authorization API, businesses can provide more control over access to resources on their networks.

Parent topic: Security Verify Access overview