Basic Authentication for API Clients in WSO2 API Manager

Want throttling and API analytics but not OAuth2?

Introduction

Many organizations that embrace an API strategy would have experienced a situation where they had to support Basic Authentication (BasicAuth) for their API clients in addition to OAuth2 due to reasons such as clients’ reluctance to move from BasicAuth to OAuth2. This is even more so a case for 3rd party API clients and partner API clients who can be large in numbers, rather than for 1st party API clients, whom the API product managers have more control over.

In this article I will be taking a look at the Basic Authentication support for API Clients that was introduced in API Manager 3.0.0, its main limitation and solutions to overcome those limitations.

Basic Authentication for API Clients in WSO2 API Manager