The HTTP Proxy-Authenticate response header defines the authentication method that should be used to gain access to a resource behind a proxy server. It authenticates the request to the proxy server, allowing it to transmit the request further.

The Proxy-Authenticate header is sent along with a 407 Proxy Authentication Required.

Header type Response header
Forbidden header name no


Proxy-Authenticate: <type> realm=<realm>


Authentication type. A common type is "Basic". IANA maintains a list of authentication schemes.
A description of the protected area, the realm. If no realm is specified, clients often display a formatted host name instead.


Proxy-Authenticate: Basic

Proxy-Authenticate: Basic realm="Access to the internal site"


Specification Title
RFC 7235, section 4.3: Proxy-Authenticate HTTP/1.1: Authentication
RFC 7617 The 'Basic' HTTP Authentication Scheme

Browser compatibility

Update compatibility data on GitHub
ChromeEdgeFirefoxInternet ExplorerOperaSafariAndroid webviewChrome for AndroidEdge MobileFirefox for AndroidOpera for AndroidSafari on iOSSamsung Internet
Basic supportChrome Full support 1Edge ? Firefox Full support 1IE ? Opera Full support YesSafari ? WebView Android ? Chrome Android Full support YesEdge Mobile ? Firefox Android Full support YesOpera Android Full support YesSafari iOS ? Samsung Internet Android ?


Full support  
Full support
Compatibility unknown  
Compatibility unknown

See also

Document Tags and Contributors

Contributors to this page: fscholz, abhinay2891, teoli
Last updated by: fscholz,