Authentication and authorization policies exist in companies of all types and sizes to govern access control and determine who can see and work with specific data. At the same time, people are one of the biggest security vulnerabilities in organizations, making access control at a granular level one of the most important means of securing your sites, apps and your business as a whole, particularly at a time when ransomware and other attacks are on the rise.
I recently hosted an Ask Me Anything webinar on authentication and authorization in Varnish. The number of interesting questions we received confirmed that authentication and authorization is a subject that many people are interested in and want to know more about.
In our work with customers and prospects, we’ve found that there are a lot of questions out there about authorization and authentication - both in general and specifically related to privilege and access management using and through Varnish.
These days, almost nothing happens online without authentication. It goes without saying that it has become extremely important. Whether you run a very small internal website or a huge e-commerce platform, it’s almost a guarantee that you will have an authentication layer somewhere in your architecture. The reason is simple: you don't want just anyone to be able to change or access the content or your web application layer.