The two main concerns of access control in Ververica Platform are authentication and authorization.
- Authentication is the process of verifying who an entity (such as a user) is.
- Authorization is the process of verifying that an authenticated entity (such as a user) has access to a resource and can perform a desired action.
In Ververica Platform, authentication is facilitated by an external identity provider. Permissions to access resources are governed by roles. Roles are assigned to individual users or groups in a Namespace or to API Tokens for non-interactive/machine to machine access.
We cover each of these concerns separately in their respective sub pages.