Skip to content

Support for authorization header #64

New issue
New issue
Open
Open
Support for authorization header#64
Labels
enhancementNew feature or request
@kappsegla

Description

@kappsegla
kappsegla
opened on Feb 3, 2022

One standard header in HTTP requests is authorization. This can be used to provide credentials to the server and the server can then use this to authorize certain paths on the server demanding for example username and password for login. Maybe we can create a class that can handle this for incoming requests? Can also be extended with functionality for permitting and or banning ip-adresses.

https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication

Example, when from a client (Insomnia) using the Auth mode Basic we can provide a username and password.

basic

This results in a header:
Authorization: Basic , where credentials is the Base64 encoding of ID and password joined by a single colon :.

For username: user and password:password the following will be sent to the server which has to base64 decode the textstring and separate username and password.

authorization: Basic dXNlcjpwYXNzd29yZA==

If no credentials are available or they are invalid the server can respond with a 401 (Unauthorized) status code.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions