We need proper support for HTTP authentication.
I think we are good for now. If necessary we can later add an 'authenticate' signal for clients to handle this message.
Yes, we should definitely add an authenticate signal, but it's not high priority and default behaviour is great. Great work!, thanks.