HTTPS and BASIC authentication

When I use HTTP BASIC authentication along with HTTPS, are the username and password securely passed to the server?

I would be happy if you can help me with some references.

I mean, it would be great if I can cite StackOverflow Q&A as a reference in, say, assignments, reports, exams, or even in a technical paper. But I think I am not there yet.

Solution

yes. if you're using https the conversation with the web server is entirely encrypted.

Resolving javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed Error?
HTTPS not workin on AWS Elastic BeanStalk single instance Java platform
node https & zlib package: can't parse gzip'ed response from stackoverflow.com
HTTP to HTTPS Nginx too many redirects
Load CA root certificate at runtime in Java
SSL Self-Signed Certificates Issue in Gitlab
Sniffing Android app's HTTPS traffic from Fiddler fails with only 'Tunnel To' entries in Fiddler
Redirect HTTP to HTTPS on default virtual host without ServerName
How to disable HTTPS or change to HTTP in dev and prod version on symfony?
How to remove JVM property "https.proxyHost"?
How to make Sinatra work over HTTPS/SSL?
How do I disable the security certificate check in Python requests
Best Practice: 301 Redirect HTTP to HTTPS (Standard Domain)
Is it possible to disable HTTP for a Keycloak instance in Azure Container Apps?
How can I make git accept a self signed certificate?
Nginx proxy remove specific path and empty Post request body + HTTPS
How do I get Python to send as many concurrent HTTP requests as possible?
nodejs: listen EACCES: permission denied 0.0.0.0:80
How to make https request and encrypt POST parameters?
Understand Prometheus HTTP API result type
Redirect chain problem in web.config, Windows Server 2020 IIS
Nginx redirect http://www and naked http/https to https://www
HTTPS block my audio playlist. How to solve it?
Issue using certbot with nginx
Expo Go HTTPS-Request doesn't work on android but works on every other OS. (HTTP-Requests are working)
How to deal with mixed content in a website which should be secured as https?
Chrome blocks FastAPI file download using FileResponse due to using HTTP instead of HTTPS
Forget which client certificate is used by Chrome for an URL
SSLHandshakeException - Chain chain validation failed, how to solve?
HTTPS disconnected - Kestrel