0

I've implemented Basic Authorization for API Authentication purposes. But, when I send my credential in API access those credentials show like the below picture in the Authorization header.

So, How to hide my credential in this header?

Thank you in advance.

Browser Network Header

Dev Asit
  • 113
  • 1
  • 5
  • 1
    If the server requires to use HTTP Basic auth then having username:password base64 encoded in every request is required. That is the way HTTP basic aus is defined in RFC7617. – Robert Jul 05 '21 at 11:35
  • Is there any way of hiding those credentials inside the **Network console** – Dev Asit Jul 08 '21 at 07:05
  • No. And this also doesn't make sense. If you just have entered the credentials there is no problem in showing them in the browser developer tools. – Robert Jul 08 '21 at 07:07
  • Then what's the point of using basic auth? – Dev Asit Jul 08 '21 at 07:10
  • The point of Basic auth is transferring username and password in every request to the server so the server can check if you are authorized to do the request. – Robert Jul 08 '21 at 07:12
  • And that's why it's called BASIC Auth. It's extremely BASIC authentication. – Toby Oct 10 '21 at 19:23
  • Yes, got it. Thank you – Dev Asit Oct 29 '21 at 16:45

0 Answers0