Assaf Arkin wrote: > Alex Boisvert wrote: > > I would also suggest using the standardized NIST RBAC terminology (user, > > role, permission) because it's most widely used and more intuitive (and > > business friendly). "Credential" seems to be the most common term used > > for proof of identity and authority. > Credentials are proof of identity, not authority.
I believe that's what Alex said. Credentials are for authentication.
Roles/permissions are for authorization.
--- Noel
