Questions about security authentication in Prometheus

[浮云游子]

I have introduced the security module in springboot2.0 and want to authenticate the request of / actuator / *.

Now visit the IP: port / actuator / prometheus through the browser, and enter the username and password for normal access; 

only the username and password in basic_auth are added to prometheus.yml, and the error "INVALID is not a valid start token" is displayed.

I hope to get your help.thanks

this is my prometheus.yml about basic_auth 

[Brian Candler]

If this is non-TLS, you can trace the actual http exchange with tcpdump.

tcpdump -i eth0 -nn -s0 -A tcp port 12345

Replace eth0 with external interface (or lo if you are scraping 127.0.0.1), and 12345 with exporter port number.

The IP and TCP headers will show as garbage, but you should see the GET request and the status code and response from the server.