Basic Auth Generator

Generate HTTP Basic Authorization headers from a username and password.

Credentials

What it does

HTTP Basic authentication joins a username and password with a colon, Base64-encodes that credential string, and sends it in the `Authorization` header with the `Basic` scheme.

This is handy for API clients, webhook tests, curl commands, staging sites, and simple service-to-service authentication where the receiving server expects Basic auth.

Common uses

  • Generate an `Authorization: Basic ...` header for API clients, webhook tools, and HTTP request examples.
  • Copy the header value when a client library asks for only the auth scheme and token.
  • Copy the raw Base64 credential when debugging how a Basic auth header was assembled.

Watch outs

  • Basic auth is encoding, not encryption. Anyone who sees the header can decode the username and password.
  • Use Basic auth only over HTTPS so credentials are protected in transit.
  • Usernames cannot contain a colon because the first colon separates the username from the password.

Privacy

Credentials are encoded in your browser. The username, password, and generated header are never sent to Crypto Lambda.

FAQ

Is Basic auth secure?

Basic auth does not encrypt credentials by itself. It should be used only over HTTPS, and credentials should still be treated like secrets.

Can the password contain a colon?

Yes. The username cannot contain a colon because the first colon is the separator, but the password may contain colons.

What should I paste into an Authorization header?

Use the full `Authorization: Basic ...` line when a tool accepts complete headers, or the `Basic ...` value when a field already represents the Authorization header.

Related tools