Authentication - HTTP Authentication

Authentication - HTTP Authentication

About

In an HTTP authentication scheme, the following may play a role:

HTTP cookies (to saved a session token for instance)
TLS client certificates for digital signature authentication,
and authentication entries (ie Authorization headers: name, password).

Articles Related

List

Full list - Hypertext Transfer Protocol (HTTP) Authentication Scheme Registry

Web Security - Session Identifier Cookie

Documentation / Reference

Authentication (rfc7235), R. Fielding, J. Reschke. IETF. - Hypertext Transfer Protocol (HTTP/1.1): Authentication.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication

Recommended Pages

Security - (Identity+Authenticator=Credential)

Security - (Identity+Authenticator=Credential) About Identity is typically an account’s user name such as: * the Security Accounts Manager (SAM) account name * or the User Principal Name (UPN "...

Authentication - Basic Authentication (HTTP)

Authentication - Basic Authentication (HTTP) About Basic Access Authentication is an Authentication mechanism from HTTP auth. Basic access authentication uses the easily reversible Base64 encoding "...

Oauth - Client Authentication

Oauth - Client Authentication About authentication method for a client in Oauth. The client MUST NOT use more than one authentication method in each request. Articles Related Usage Client authen "...

(HTTP|HTTPS) - Hypertext Transfer Protocol

Hypertext Transfer Protocol (HTTP) is the transfer protocol to exchange or transfer web resource between nodes (host). The H in HTTP means an hypertext (ie HTML). The protocol was first designed to t "...

Authentication - HTTP Digest Access Authentication

Digest access authentication is an http authentication method based on authorization entry. It is intended (as a security trade-off) to replace unencrypted HTTP basic access authentication. It is not, "...

Authentication - Jwt (Json web token)

json web token is a token protocol. It's also known as jot. The main purpose of JWTs is to transfer (ie identity property) between two parties This is a simple, optionally validated and/or encrypted, "...

Browser - Web API - Fetch function

API The fetch function is part of the web api function and is a AJAX call. It's one of the possibilities to fetch a resource. XMLHttpRequest (XHR) The fetch function returns a promise as response. Th "...

HTTP - Fiddler

Fiddler is a HTTP Network Analyzer via a forward proxy Articles Related Example

HTTP - Header (Fields)

Headers are properties (name-value pairs), where both name and value are text that are: send along with a request and received with a response The HTTP headers are equivalent to fields in other prot "...

Share this page: