stackoom
  简体   繁体   中英

Nginx Basic Auth working on directory, but not files

 原文  2015-12-30 11:08:01       authentication/ nginx/ basic-authentication

Question

i just started working on nginx, switching to it after working with apache for years. Currently, I am trying to get HTTP Basic Auth working. With the config down there, I get an Basic Auth Dialog in Chrome if I go to https://www.website.com/doe . But - if I try to go to the domain https://www.website.com/doe/importanttext.csv - it will not ask for an auth, but instead just download the file. How can I protect folders completly - with all content?

Thanks 

server {
[SSL and Server Stuff]

    location ^~ /doe/ {
            auth_basic "Admin Access";
            auth_basic_user_file  /var/www/doe/.htpasswd;
    }


    location / {
            try_files $uri $uri/ =404;
    }

    location ~ \.php$ {
            try_files $uri = 404;
            fastcgi_pass unix:/var/run/php5-fpm.sock;
            fastcgi_index index.php;
            fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
            include fastcgi_params;
    }

    location ~ /\.ht {
            deny all;
    }

}

1 answers

solution1
 0 ACCPTED  2015-12-30 12:04:17

I found my error, I was using

auth_basic "Admin Access";

however, to protect the files within the folder, it needs to be

auth_basic "Restricted";

Nginx stops looking for location matches if it finds a matching one and then does only navigate in this path. So if I want to also use php and .ht protection within that protected subfolder, I also need to include these directives there as well - as shown beneath. 

server {
[SSL and Server Stuff]

location ^~ /doe/ {
        auth_basic "Admin Access";
        auth_basic_user_file  /var/www/doe/.htpasswd;

location ~ \.php$ {
        try_files $uri = 404;
        fastcgi_pass unix:/var/run/php5-fpm.sock;
        fastcgi_index index.php;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        include fastcgi_params;
}

location ~ /\.ht {
        deny all;
}
}


location / {
        try_files $uri $uri/ =404;
}

location ~ \.php$ {
        try_files $uri = 404;
        fastcgi_pass unix:/var/run/php5-fpm.sock;
        fastcgi_index index.php;
        fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
        include fastcgi_params;
}

location ~ /\.ht {
        deny all;
}

}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Nginx Basic Auth not Working Nginx auth_basic not working for a specific url nginx auth_basic Nginx: Basic auth protecting folders and PHP files, but not images nginx: auth_basic and php Nginx - set global auth_basic Nginx basic auth and number of authenticated locations nginx auth_basic time limitation Rails basic auth not working properly Apache Basic Auth not working in .htaccess or Directory blocks; works fine in Location blocks
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM