response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); response.setHeader("www-authenticate","basic realm=/"cqs/"");