Web authorization management
Web authorization management
(also WAM)
Web authorization management definition
Web authorization management refers to the process of granting or denying access to specific web resources based on a user’s privileges within a system. As a component of web access management, web authorization management is responsible for determining what an authenticated user is allowed to do on a web application or service.
See also: access management, access control entry, identity and access management
How does web authorization management work?
Once the web access management system authenticates the user, the system checks the permissions associated with that user. These permissions are predefined and determine what the user can and cannot do. For example, a user may be allowed to read information from a database but not write to it. Another user might have the rights to modify that same data. The specifics of what a user can do will vary based on the user’s role, the organization’s policies, and the security requirements of the specific web resource.
These permissions are typically managed through a system of access control lists, role-based access control, or attribute-based access control. The choice depends on the needs of the organization and the complexity of the permissions required.
These permissions are typically managed through a system of access control lists, role-based access control, or attribute-based access control. The choice depends on the needs of the organization and the complexity of the permissions required.
Where is web authorization management used?
- Role-based access. Most common way for businesses to manage access is by allowing access to different resources based on employee job roles.
- Multi-tenant systems. If a system serves multiple clients, authorization management helps ensure that each client can only access their own data.
- Online services and e-commerce. For online services, it’s used to ensure that only paying customers can access certain resources.