The HTTP Proxy-Authenticate response header defines the authentication method that should be used to gain access to a resource behind a proxy server. It authenticates the request to the proxy server, allowing it to transmit the request further.

The Proxy-Authenticate header is sent along with a 407 Proxy Authentication Required.

Header type Response header
Forbidden header name no


Proxy-Authenticate: <type> realm=<realm>


Authentication type. A common type is "Basic". IANA maintains a list of authentication schemes.
A description of the protected area, the realm. If no realm is specified, clients often display a formatted host name instead.


Proxy-Authenticate: Basic

Proxy-Authenticate: Basic realm="Access to the internal site"


Specification Title
RFC 7235, section 4.3: Proxy-Authenticate HTTP/1.1: Authentication
RFC 7617 The 'Basic' HTTP Authentication Scheme

Browser compatibility

BCD tables only load in the browser

See also