title: Azure App Configuration REST API - Authorization description: Reference pages for authorization using the Azure App Configuration REST API author: AlexandraKemperMS ms.author: alkemper ms.service: azure-app-configuration ms.topic: reference ms.date: 08/17/2020
Authorization refers to the procedure used to determine the permissions that a caller has when making a request. There are multiple authorization models. The authorization model that is used for a request depends on the authentication method that is used. The authorization models are listed below.
The authorization model model associated with HMAC authentication splits permissions into read-only or read-write. See the HMAC authorization page for details.
The authorization model associated with Azure Active Directory (Azure AD) authentication uses Azure RBAC to control permissions. See the Azure AD authorization page for details.