Yeah. That looks like a nightmare.
They actively discourage using basic credentials.
Which is usually the right call
client cert auth works well, but imposes requirements on client org infra
SASL might work here?
for ease of integration might need to do plain old jsonrpc with basic http auth
which is what everyone expects