# Understand authentication and authorization

Understand the authentication methods provided by Authing

Authentication refers to confirming the identity of the visitor. Authing is divided into two main authentication methods ([How to choose an authentication method?](./#How to choose an authentication method)), which are ordinary authentication and standard protocol authentication.

# Ordinary certification

After the Authing user pool is created, the authentication method supported by default is ordinary authentication. After successful authentication, this authentication method will directly return the JWT Token issued by Authing as the authentication credential ([What is JWT Token?](/advanced/authentication/jwt -token)).

Password authentication-email, username or mobile number Mobile-Verification code authentication Mini Program Scan Code Login Welcome

# Standard protocol certification

Standard protocol authentication refers to the process of authentication through OAuth 2.0, OIDC, SAML, LDAP and other standard protocols. If your application has high security requirements, it is recommended to use this authentication method.

Access OAuth 2.0 Access OpenID Connect Access SAML Configure LDAP service

# You still need to know

Understand the definition and use of JWT Token

# How to choose an authentication method

  1. If you don't understand what OAuth, OIDC, SAML, LDAP and other standard protocols are and the application security requirements are not high, it is recommended to use ordinary authentication;
  2. If your application has high security requirements, regardless of whether you understand the standard protocol or not, please [use standard protocol certification](./#standard protocol certification).

# Authorization

Authorization 基础概念