Authorization scheme for HTTP Basic Authentication should be case insensitive

Hi,

According to [RFC 2617](https://tools.ietf.org/html/rfc2617#section-1.2), the authorization scheme should be case insensitive; thus, `Basic` and `basic` should both be valid.

Here's the relevant part:

```
HTTP provides a simple challenge-response authentication mechanism
that MAY be used by a server to challenge a client request and by a
client to provide authentication information. It uses an extensible,
case-insensitive token to identify the authentication scheme...
```

Thanks!

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Authorization scheme for HTTP Basic Authentication should be case insensitive #86

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Authorization scheme for HTTP Basic Authentication should be case insensitive #86

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions