--server-basic-auth

Requires HTTP Basic authentication on every request. Pass the credential as username:password. Clients then send a standard Authorization: Basic <base64> header; a request without it, or with a wrong credential, gets 401.

Combine with --server-signed-url to let GET requests authorize by signature instead of a header. Valid Basic credentials always authorize; a signature is checked only when no credentials are sent.