Authentication Authorization

User knows credentials

User have keys, tokens.

User is with finger prints, facial identity

 Authentication : process to verify the user identify / who you are

0) LDAP Server

1) Identity Provider

2) OAuth Server

3) OpenID Connect

Authorization : process to user access to resource / what you can do

SSO - Time based Token

SAML - Access Token

OAUTH -  Access Token (less time based), Refresh Token (longer time based), Bearer Token

OIDC - ID Token, Access Token

MFA - User knows + User Have +User is

Token - ( Header + Data(Hashing Mechanism) + Digital Signature )