Authorization gives the user explicit permission to access a specific resource or function.
It is granted after successful user authentication and implies, upstream, the precise definition of the rights and privileges assigned to them.
Authorization ensures that only individuals with the necessary rights can perform specific actions or access particular resources.