In TAG, a Security Profile is a runtime configuration of an HTTP Security scheme. A Security Profile can be associated with a TAG Route, to enforce Authentication and Authorization when proxying an HTTP Request to an underlying HTTP service.
A Security Profile offers the flexibility of configuring different aspects to the scheme. This allows a complete
control of all the Authentication and Authorization that takes place. For instance, it is possible to change the
Authorization header name and use multiple security schemes at the same time.
The TAG provides four distinct Security Profiles:
Basic Profile
OAuth 2.0 Profile
HTTP Signature Profile
Bearer Profile