Proxy-Authorization request header contains the
credentials to authenticate a user agent to a proxy server, usually after the server has
responded with a
Proxy Authentication Required status
|Header type||Request header|
|Forbidden header name||no|
Proxy-Authorization: <type> <credentials>
- Authentication type. A common type is "Basic". See also the IANA registry of Authentication schemes.
- The credentials are constructed like this:
- The username and the password are combined with a colon
- The resulting string is base64
Note: Base64 encoding does not mean encryption or hashing! This method is equally secure as sending the credentials in clear text (base64 is a reversible encoding). Prefer to use HTTPS in conjunction with Basic Authentication.
- The username and the password are combined with a colon (
Proxy-Authorization: Basic YWxhZGRpbjpvcGVuc2VzYW1l
|RFC 7235, section 4.4: Proxy-Authorization||HTTP/1.1: Authentication|
|RFC 7617||The 'Basic' HTTP Authentication Scheme|