What are the HTTP Authentication schemes and methods?


This page lists the HTTP authentication schemes and the HTTP components that they used



Via the Http Authorization Header:


This is not an authentication but when authentication is successful, a session cookie may:

  • hold the state of authentication via the session id
  • hold as value the identification token encrypted.

Scheme Elements

In this authentication scheme, the following HTTP elements may play a role:

At the end of the journey, a value is used to authenticate the client (ie user, process).

Documentation / Reference

Discover More
(HTTP|HTTPS) - Hypertext Transfer Protocol

Hypertext Transfer Protocol (HTTP) is the transfer protocol to exchange or transfer web resource between nodes (host). The H in HTTP means an hypertext (ie HTML). The protocol was first designed...
Authentication - HTTP Digest Access Authentication

Digest access authentication is an http authentication method based on authorization entry. It is intended (as a security trade-off) to replace unencrypted HTTP basic access authentication. It is not,...
Jwt Auth Flow
Authentication - Jwt (Json web token)

json web token is a access token. It's also known as jot. When a JWT is signed, it becomes a JWS and can be used for sender authentication and authorization. The main purpose of JWTs is to transfer...
Chrome Devtool Xhr Fetch Request
Browser - Web API - Fetch function

The fetch function is part of the web api function and is a AJAX call. It's one of the possibilities to fetch a resource. XMLHttpRequest (XHR) The fetch function returns a promise as response. The Fetch...
Fiddler Web Debugger
HTTP - Fiddler

Fiddler is a HTTP Network Analyzer via a forward proxy It will install itself as the system HTTP Forward proxy. Browsers support the system proxy (ie windows configuration). You have nothing to...
Http Headers Firefox
HTTP - Header (Fields)

Headers are : properties (textual name-value pairs, ie both name and value are text) located in the head of: a http request that the client sends a http response that the server sends The HTTP...
Oauth - Client Authentication

authentication method for a client in Oauth. The client MUST NOT use more than one authentication method in each request. Client authentication is used for: Enforcing the binding of refresh tokens...
Security - (Identity+Authenticator=Credential)

Credentials are electronic information that is used to verify an identity. They are provided by client application (ie user, browser, application) to prove their identity Credentials are also known as:...
Soap Ui Basic Authentication
What is and how works the Basic Authentication scheme? (HTTP)

Basic Access Authentication is an Authentication mechanism for HTTP request. To be authenticated, the request should have: the header authorization and its value should have this format: the basic...

Share this page:
Follow us:
Task Runner