We don't have basic-auth for the web-app login out of the box but it would be easy to add single sign-on with preauth.
Extending authentication
Our servlets all support basic auth so maybe small hack would be to have users first navigate to a servlet url and get the basic auth prompt then go to the app. Not as clean from a user perspective but should work.