What is it

Auth is commonly referencing Authentication

Authentication vs Authorization

Authentication

• login by x user with username and password

Authorization

• post-login, identifying requests are by x user

Authorization

Session (cookie) to store user temporarily

• maintained by server, sent to client

SessionID is sent every time with request to server