Authorization
Carries credentials for authenticating the client to the server. Common schemes: Basic (base64 user:pass), Bearer (token/JWT), Digest.
RequestSyntax
Authorization: <scheme> <credentials>Example values
| Value | Explanation |
|---|---|
| Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9... | JWT or API token |
| Basic dXNlcm5hbWU6cGFzc3dvcmQ= | Base64-encoded user:password |
| Digest username=... | HTTP Digest authentication |
cURL usage
curl -H "Authorization: Bearer <token>" https://api.example.com/me
Common mistakes
Sending Bearer without 'Bearer ' prefix; using Basic over non-HTTPS.