Basic auth is great. It lowers the barrier of entry, to anyone with a browser. N... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		johnjuuljensen on Feb 22, 2017 \| parent \| context \| favorite \| on: API Design Guide Basic auth is great. It lowers the barrier of entry, to anyone with a browser. Not all users of APIs are developers.

fixermark on Feb 22, 2017 [–]

https basic auth, I assume you mean.

For http basic auth, you may as well just "secure" the resource by hosting it at http://my-username-and-password.example.com or http://example.com/username/password/resource

johnjuuljensen on Feb 22, 2017 | [–]

I thought https was implied these days :)

Yes absolutely https.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact