Basic authentication
Red Hat build of Quarkus 3.15
Abstract
This guide introduces HTTP Basic authentication as a minimal-resource technique for securing Quarkus application endpoints. It details the use of the Authorization header for transmitting Base64-encoded credentials and highlights the need for HTTPS to protect these credentials during transmission. It discusses limitations such as lack of encryption for credentials, the need to send credentials with each request, and the increased complexity of managing credentials within the application. Implementation guidance and references to additional security resources, including enabling Basic authentication and role-based access control (RBAC), are also provided.