# Authentication

**Overview**

Understanding authentication is crucial for ensuring secure access to systems and data. Authentication verifies the identity of users or systems before granting access to resources. 

Authorization determines the permissions and access levels for authenticated users. Below are key concepts and components related to user authentication and authorization.

1. **Login**
   * **Description:** Log in via the Torus Digital portal, verify via OTP, exchange the request token for an access token, and use it for future API requests.
2. **Session Token**
   * **Description:** A session token is generated and issued to the user after successful authentication. This token is used to maintain the user's authenticated state across multiple requests and sessions