rfc-2617

HTTP Authentication: Basic and Digest Access Authentication

J. Franks, P. Hallam-Baker, J. Hostetler, S. Lawrence, P. Leach, A. Luotonen, L. Stewart

date1999-06 streamIETF areaapp wghttp statusDRAFT STANDARD pages34 canonicalhttps://www.rfc-editor.org/rfc/rfc2617 doi10.17487/RFC2617 errataview

This document provides the specification for HTTP's authentication framework, the original Basic authentication scheme and a scheme based on cryptographic hashes, referred to as "Digest Access Authentication". [STANDARDS-TRACK]

obsoleted by

rfc-7235 — Hypertext Transfer Protocol (HTTP/1.1): Authentication
rfc-7615 — HTTP Authentication-Info and Proxy-Authentication-Info Response Header Fields
rfc-7616 — HTTP Digest Access Authentication
rfc-7617 — The 'Basic' HTTP Authentication Scheme

obsoletes

rfc-2069 — An Extension to HTTP : Digest Access Authentication