$ref: '#/components/responses/UnauthorizedError'ĭescription: Authentication information is missing or invalid You can also define the 401 “Unauthorized” response returned for requests with missing or incorrect credentials. The latter is useful if only a subset of operations require Basic authentication:īasic authentication can also be combined with other authentication methods as explained in Using Multiple Authentication Types. security can be set globally (as in the example above) or on the operation level. The square brackets denote the security scopes used the list is empty because Basic authentication does not use scopes. HTTPie does so by providing an http command that allows for issuing arbitrary HTTP requests using a simple and natural syntax and displaying colorized responses. make CLI interaction with HTTP-based services as human-friendly as possible. The security section then applies Basic authentication to the entire API. HTTPieis a CLI HTTP utility built out of frustration with existing tools. This scheme must have type: http and scheme: basic. The first section, securitySchemes, defines a security scheme named basicAuth (an arbitrary name). Using OpenAPI 3.0, you can describe Basic authentication as follows:īasicAuth: # <- arbitrary name for the security scheme Note: Because base64 is easily decoded, Basic authentication should only be used together with other security mechanisms such as HTTPS/SSL. For example, to authorize as demo / the client would send Authorization: Basic ZGVtbzpwQDU1dzByZA= The client sends HTTP requests with the Authorization header that contains the word Basic word followed by a space and a base64-encoded string username:password. Basic Authenticationīasic authentication is a simple authentication scheme built into the HTTP protocol. If you use OpenAPI 2.0, see our OpenAPI 2.0 guide.
0 kommentar(er)
