A little http basic auth help needed

[John Lockwood]

I am building a new Apache2 server to host Munki and I have so far got a basic http virtual site redirecting to the https virtual site, I have the SSL server certs working and I have content being served.

I am now adding http basic auth to the setup and this is also working for when I manually go to the site and manually enter the credentials.

I have encoded the username:userpassword as base64 and added this to a mobile config and this is successfully being pushed out.

This is something I have done before but this time it is not working.

If in a script I read the plist entry and decode it from base64 and then send the decoded value as a curl parameter it works e.g.

(abbreviated command)

/usr/bin/curl --get -u "$Decoded_Auth"

if I do it with the base64 encoded value as a header like...

(also abbreviated)

/usr/bin/curl -X POST --header "Authorization: Basic ${Basic_Auth}"

It fails.

Whilst at this stage this is for a Munki 'enrolment' script I am concerned that the Munki client i.e. Managed Software Centre will also have the same issue.