diff --git a/g/net/ghttp/ghttp_request_auth.go b/g/net/ghttp/ghttp_request_auth.go
new file mode 100644
index 000000000..872247ddd
--- /dev/null
+++ b/g/net/ghttp/ghttp_request_auth.go
@@ -0,0 +1,64 @@
+// Copyright 2018 gf Author(https://gitee.com/johng/gf). All Rights Reserved.
+//
+// This Source Code Form is subject to the terms of the MIT License.
+// If a copy of the MIT was not distributed with this file,
+// You can obtain one at https://gitee.com/johng/gf.
+
+package ghttp
+
+import (
+    "net/http"
+    "strings"
+    "gitee.com/johng/gf/g/encoding/gbase64"
+    "fmt"
+)
+
+// 设置Basic Auth校验提示
+func (r *Request) setBasicAuth(tips...string) {
+    realm := ""
+    if len(tips) > 0 && tips[0] != "" {
+        realm = tips[0]
+    } else {
+        realm = "Need Login"
+    }
+    r.Response.Header().Set("WWW-Authenticate", fmt.Sprintf(`Basic realm="%s"`, realm))
+    r.Response.WriteHeader(http.StatusUnauthorized)
+}
+
+// 设置HTTP基础账号密码认证，如果用户没有提交账号密码，那么提示用户输出信息。
+// 验证成功之后返回true，否则返回false
+func (r *Request) BasicAuth(user, pass string, tips...string) bool {
+    auth := r.Header.Get("Authorization")
+    if auth == "" {
+        r.setBasicAuth(tips...)
+        return false
+    }
+    auths := strings.SplitN(auth, " ", 2)
+    if len(auths) != 2 {
+        r.Response.WriteStatus(http.StatusForbidden)
+        return false
+    }
+    switch auths[0] {
+        case "Basic":
+            authStr, err := gbase64.Decode(auths[1])
+            if err != nil {
+                r.Response.WriteStatus(http.StatusForbidden, err.Error())
+                return false
+            }
+            authArray := strings.SplitN(string(authStr), ":", 2)
+            if len(authArray) != 2 {
+                r.Response.WriteStatus(http.StatusForbidden)
+                return false
+            }
+            if authArray[0] != user || authArray[1] != pass {
+                r.setBasicAuth(tips...)
+                return false
+            }
+
+        default:
+            r.Response.WriteStatus(http.StatusForbidden)
+            return false
+    }
+    return true
+}
+
diff --git a/geg/net/ghttp/server/reload/admin.go b/geg/net/ghttp/server/reload/admin.go
index 55438e229..2b53fbdfb 100644
--- a/geg/net/ghttp/server/reload/admin.go
+++ b/geg/net/ghttp/server/reload/admin.go
@@ -2,11 +2,17 @@ package main
 
 import (
     "gitee.com/johng/gf/g"
+    "gitee.com/johng/gf/g/net/ghttp"
 )
 
 func main() {
     s := g.Server()
-    s.EnableAdmin()
+    s.EnableAdmin("/admin")
+    s.BindHookHandler("/admin/*any", ghttp.HOOK_BEFORE_SERVE, func(r *ghttp.Request) {
+        if !r.BasicAuth("admin", "123", "") {
+            r.Exit()
+        }
+    })
     s.SetPort(8199)
     s.Run()
 }
\ No newline at end of file