Basic Authentication (Auth) is a standard web authentication method that provides additional security to your QT Cluster by requiring you to use a username and password to make requests.
Basic Auth enhances security by requiring an http-header named “Authorization” for all requests to your QT Cluster.
The value of the authorization header is created by:
- Concatenating your username and password with a colon “:”
- Base64 encoding your concatenated username and password
- Prepending the word “Basic” to your encoded username and password
For example, if your username is “Bison” and your password is “Trails” your request would have the following header:
Authorization: Basic Qmlzb246VHJhaWxz
With Qmlzb246VHJhaWxz being the Base64 encoding of “Bison:Trails”.
You should enable Basic Auth unless it does not work for your intended use case, in which case you should consider adding addresses to your restrictive allow list. If your QT Cluster does not have Basic Auth or a restrictive allow list, it can be accessed by anyone who knows the address and may be at risk.