DZone
Security Zone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
  • Refcardz
  • Trend Reports
  • Webinars
  • Zones
  • |
    • Agile
    • AI
    • Big Data
    • Cloud
    • Database
    • DevOps
    • Integration
    • IoT
    • Java
    • Microservices
    • Open Source
    • Performance
    • Security
    • Web Dev
DZone > Security Zone > What Is the Difference Between Site Login and HTTP Authentication?

What Is the Difference Between Site Login and HTTP Authentication?

Read on to learn the difference between HTTP authentication and Form-based authentication, and a tool that can help to configure these protocols.

Nicholas Sciberras user avatar by
Nicholas Sciberras
·
May. 13, 17 · Security Zone · Analysis
Like (3)
Save
Tweet
2.95K Views

Join the DZone community and get the full member experience.

Join For Free

When configuring a target, you sometimes need to configure login details to the web application. This allows Acunetix to check the restricted areas in your web application. There are two types of authentication that can be done with a website – Form-based authentication and HTTP Authentication.

Form-based authentication is the most popular form of authentication. It is the type of authentication which is implemented in the web application and is used in popular websites such as Gmail or Facebook.
facebook-login

This type of authentication can be configured in Acunetix from the Site Login section of a Target.

site-login

On the other hand, HTTP Authentication is configured in the Web Server and is often used as an added level of security. The authentication window appears before any page is loaded, and looks like what is shown in the screenshot. Different browsers display this message differently.
http-authentication

HTTP Authentication is also supported by Acunetix and can be configured from the Target’s settings > HTTP tab > HTTP Authentication.
http-authenticatgion-settings

authentication

Published at DZone with permission of Nicholas Sciberras, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • How to Solve Context Propagation Challenges in Distributed Tracing
  • Getting Started With RSocket Kotlin
  • How to Manage a Red Hat MicroShift Cluster with Shipa
  • 7 Tips for Using Instrumentation and Metrics To Align Site Reliability With Business Goals

Comments

Security Partner Resources

X

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • MVB Program
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends:

DZone.com is powered by 

AnswerHub logo