Combining them both you can introduce authentication/authorization cookie
+Authorization specify access rights to resources and provide access control
+in particular to your application.
+You are able to request authorization by decorating your method with
+:py:meth:`~wheezy.security.authorization.authorized`. Here is typical use
+ from wheezy.security import authorized
+ class MyBusinessLogic(object):
+ def cancel_transfer(self, id):
+ def approve_transfer(self):
+Note that :py:meth:`~wheezy.security.authorization.authorized` decorator
+requires the object to supply ``principal`` attribute of type
+If caller is not authorized to perform requested operation
+:py:class:`~wheezy.security.errors.SecurityError` exception is raised.
+See :py:meth:`~wheezy.security.authorization.authorized` for more details.