Overview of authentication

The system APIs must control access to the data and actions within ClaimCenter. When a caller tries to access data or execute an action, the caller must be authenticated and authorized. Authentication is the process of verifying that the caller is who they claim to be. Authorization is the process of determining what operations and data the caller is allowed to access. These two process are often referred to collectively as "auth".

This topic provides an overview of how authentication and authorization are managed for the system APIs.