# HTTP Basic Auth { #http-basic-auth }

For the simplest cases, you can use HTTP Basic Auth.

In HTTP Basic Auth, the application expects a header that contains a username and a password.

If it doesn't receive it, it returns an HTTP 401 "Unauthorized" error.

And returns a header `WWW-Authenticate` with a value of `Basic`, and an optional `realm` parameter.

That tells the browser to show the integrated prompt for a username and password.

But it is way more complex than that.

/// tip

If you are in a hurry or don't care, continue with the next sections for step by step instructions to set everything up with different techniques.

///

To **learn the basics of HTTPS**, from a consumer perspective, check <a href="https://howhttps.works/" class="external-link" target="_blank">https://howhttps.works/</a>.

     */
    private byte[] createLargeBufferForContexts() {
        byte[] buffer = new byte[1024]; // Large enough for contexts

        // Copy basic structure
        byte[] basic = createBasicNegotiateResponseBuffer();
        System.arraycopy(basic, 0, buffer, 0, basic.length);

        return buffer;
    }

    /**
     * Creates a completely valid negotiate response buffer for positive testing.
     */

import jcifs.config.BaseConfiguration;

/**
 * Basic tests for MultiChannelManager to verify the createChannelTransport implementation.
 */
public class MultiChannelManagerBasicTest {

    private MultiChannelManager multiChannelManager;
    private Configuration config;

    @BeforeEach
    void setUp() throws Exception {
        // Create a basic configuration for testing

    /** The NTLM SSP handler */
    private NtlmSsp ntlmSsp;
    /** Flag indicating if credentials were supplied */
    private boolean credentialsSupplied;
    /** Flag to enable basic authentication */
    private boolean enableBasic;
    /** Flag to allow insecure basic authentication */
    private boolean insecureBasic;
    /** The authentication realm */
    private String realm;
    /** The default domain for authentication */

import org.junit.jupiter.api.Timeout;
import org.mockito.Mockito;

import jcifs.CIFSContext;
import jcifs.Configuration;
import jcifs.Credentials;

/**
 * Simple memory management tests to validate basic resource cleanup functionality
 */
public class SimpleMemoryManagementTest {

    private CIFSContext mockContext;
    private SmbTransportImpl mockTransport;
    private Configuration mockConfig;

  * Un header.
  * Una cookie.
* `http`: sistemas de autenticación HTTP estándar, incluyendo:
  * `bearer`: un header `Authorization` con un valor de `Bearer ` más un token. Esto se hereda de OAuth2.
  * Autenticación básica HTTP.
  * Digest HTTP, etc.
* `oauth2`: todas las formas de OAuth2 para manejar la seguridad (llamadas "flujos").

    private CommandGenerator generator;

    @Override
    public void setUp() throws Exception {
        super.setUp();
        generator = new CommandGenerator();
    }

    // Basic setter tests
    public void test_setCommandTimeout() throws Exception {
        final long timeout = 5000L;
        generator.setCommandTimeout(timeout);
        assertTrue(true);
    }

    * Um header.
    * Um cookie.
* `http`: padrão HTTP de sistemas autenticação, incluindo:
    * `bearer`: um header de `Authorization` com valor de `Bearer` adicionado de um token. Isso é herança do OAuth2.
    * HTTP Basic authentication.
    * HTTP Digest, etc.
* `oauth2`: todas as formas do OAuth2 para lidar com segurança (chamados "fluxos").

      <version>${slf4jVersion}</version>
      <scope>runtime</scope>
    </dependency>
    <dependency>
      <groupId>org.apache.maven.resolver</groupId>
      <artifactId>maven-resolver-connector-basic</artifactId>
    </dependency>
    <dependency>
      <groupId>org.apache.maven.resolver</groupId>
      <artifactId>maven-resolver-transport-file</artifactId>
    </dependency>