Tutorial: Make API requests, part 2
Part 2 of this tutorial demonstrates how to add an HTTP Authorization header to the unauthenticated endpoint in our previous flow. Adding the Authorization header enables you to invoke an API endpoint that is protected by HTTP Basic Authentication.
If you are familiar with API gateways, you can protect the API with basic authentication and test. However, for the purposes of this flow, setting up an API gateway is out of scope. Because the Amazon PetStore API ignores the Authorization header, you can still work through this tutorial without setting up an API gateway and use the unauthenticated endpoint.