Summary
HTTP authentication is a useful tool for adding some minor protection to resources. It is especially appropriate when you want to protect a collection of static data. For example, if you have some documentation in HTML that only paying customers are authorized to access, employing HTTP authentication is one of the simplest methods of achieving this through the Web.
Although there are some risks associated with HTTP authentication, if you only allow access to the protected resources over a secure SSL connection (the topic of the next chapter), virtually all risks of either type of HTTP authentication are eliminated.
The following chapter examines Secure Sockets Layer (SSL), arguably the most popular technology used to secure HTTP transactions. ...
Get HTTP Developer’s Handbook now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
