Any site that provides a level of customization or interaction will need to be able to authenticate and authorize its users. Authentication is the act of determining the identity of a user, while authorization is the determination of whether a user is permitted to perform a certain action or not.

One type of site that implements authentication and authorization is a blog (or web log). Typically, any users have permission to read the content posted to a blog without having to identify themselves. However, the blog won’t allow just anyone to create a new post on the site. A user must first log in (authentication) and have the correct permissions (authorization) before he or she can create a new post. ...