Discuss this help topic in SecureBlackbox Forum
HTTPS: Authenticate the clients with username and password
The server has built-in support for Basic and Digest authentication. Basic authentication is turned on using TElHTTPSServer.AuthBasic property. Digest authentication is turned on using TElHTTPSServer.AuthDigest property.
You should handle the TElHTTPSServer.OnGetUserPassword event, where a password should be provided for the user being authenticated (the username can be obtained from TElHTTPServerRequestParams.Username property). The password passed by the user is passed to the event.
If the event handler returns the password that does not match the password provided by the client, authentication is treated as failed.