ZeroUtil

Basic Auth Header Generator

Create HTTP Basic Authentication headers from a username and password or API token.

Maintained by

How to generate a Basic Auth header

  1. Enter the username exactly as the API or server expects it.
  2. Enter the password or token. Some APIs use an API key as the password field.
  3. Copy the Authorization header and paste it into curl, Postman, an HTTP client or your integration test.

What Basic Auth does

HTTP Basic Authentication joins the username and password with a colon, encodes that string with Base64, and sends it as Authorization: Basic <token>. Base64 is encoding, not encryption, so the header must only be sent over HTTPS.

When to use it

Basic Auth is still common for internal dashboards, old APIs, staging environments and quick webhook integrations. This generator helps you build the exact header while debugging requests.

Security notes

Anyone who sees the header can decode the credentials. Use TLS, avoid logging the header, and prefer scoped API tokens over personal passwords whenever the service supports them.

Frequently Asked Questions

Does this send my username or password anywhere?

No. The header is generated locally in your browser from the two fields. The tool does not call an API or store the credentials.

Is Basic Auth encrypted?

No. Basic Auth uses Base64 encoding, which is reversible. The transport must be HTTPS if you use Basic Auth with real credentials.

Can I use an API token instead of a password?

Yes. Many services expect the username field plus an API token as the password field, or a token as the username with an empty password. Follow the service documentation.

More Security & Privacy

Password Generator

Generate cryptographically secure random passwords with configurable length, character types and entropy display.

Open tool

Password Strength Checker

Check password strength with entropy calculation, pattern detection and common password matching.

Open tool

Password Entropy Calculator

Estimate password entropy, character pool size and crack-time ranges for online and offline attacks.

Open tool

Security Hash Generator

Generate SHA-1, SHA-256, SHA-384 and SHA-512 hashes from text or files using the Web Crypto API.

Open tool

TOTP Generator

Generate time-based one-time passwords (TOTP) from a base32 secret with live 30-second countdown.

Open tool

CSP Header Generator

Build Content-Security-Policy headers with a visual form, presets and per-directive configuration.

Open tool