block access to a file !!

block access to a file !! Hi, it must be a piece of cake but i can not find a soloution... the problem is " location admin.php". you can check it below... i just want to allow access to admin.php to some ip address and deny others. if i remove allow line from it it deny all; but when I add allow line it dont work .. please help me... I tried too many syntax but no success. i even add root and index to this location but browser prompt to download my php file.. please help here 's my server section of config...very simple server { listen 80; server_tokens off; server_name www.mysite.com; access_log /var/log/nginx/mysite.log; error_page 404 /404.html; error_page 500 502 503 504 /50x.html; location / { root /usr/share/nginx/www; index index.php; client_max_body_size 8m; client_body_buffer_size 256k; } location = /50x.html { root /usr/share/nginx/html; } location = /404.html { root /usr/share/nginx/html; } location ~ /\.ht { deny all; } location ~ \.php$ { root /usr/share/nginx/www; fastcgi_pass 127.0.0.1:9000; fastcgi_index index.php; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; include fastcgi_params; set $ssl off; if ($ssl_protocol != "" ) { set $ssl on; } fastcgi_param HTTPS $ssl; } location ~ admin.php { allow 217.66.196.193; deny all; }http://forum.nginx.org/read.php?2,227281,227281#msg-227281Sun, 19 May 2013 19:24:25 -0400 Phorum 5.2.16 http://forum.nginx.org/read.php?2,227281,227400#msg-227400 Re: block access to a file !!http://forum.nginx.org/read.php?2,227281,227400#msg-227400 torajx Nginx Mailing List - EnglishSun, 10 Jun 2012 10:53:30 -0400 http://forum.nginx.org/read.php?2,227281,227376#msg-227376 Re: block access to a file !!http://forum.nginx.org/read.php?2,227281,227376#msg-227376 torajx Nginx Mailing List - EnglishSat, 09 Jun 2012 02:44:23 -0400 http://forum.nginx.org/read.php?2,227281,227286#msg-227286 Re: block access to a file !!http://forum.nginx.org/read.php?2,227281,227286#msg-227286> thank you for reply..
> i change it to "location = /admin.php "
> and move it above the "location ~ \.php$ "

"""
Either use something like "location = /admin.php", or maybe reorder to
regex locations (with ~) so they match in the order you want.
"""

You've done both. That's ok, but unnecessary.

> it blocks other IPs but give file not found error for allowed Ips..
>
> the last time I added root to admin.php location the browser promot me
> to download admin.php..
>
> what can I do now ?

"""
You will (probably) want to repeat your fastcgi_pass and other fastcgi_*
config lines inside the new location block. One request is handled by
one location.
"""

Do that.

f
--
Francis Daly francis@daoine.org

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx]]> Francis Daly Nginx Mailing List - EnglishWed, 06 Jun 2012 10:32:01 -0400 http://forum.nginx.org/read.php?2,227281,227284#msg-227284 Re: block access to a file !!http://forum.nginx.org/read.php?2,227281,227284#msg-227284i change it to "location = /admin.php "
and move it above the "location ~ \.php$ "
it blocks other IPs but give file not found error for allowed Ips..

the last time I added root to admin.php location the browser promot me to download admin.php..

what can I do now ?]]> torajx Nginx Mailing List - EnglishWed, 06 Jun 2012 09:50:57 -0400 http://forum.nginx.org/read.php?2,227281,227283#msg-227283 Re: block access to a file !!http://forum.nginx.org/read.php?2,227281,227283#msg-227283
Hi there,

> it must be a piece of cake but i can not find a soloution...
>
> the problem is " location admin.php". you can check it below...

No, the problem is "location ~ admin.php" coming after "location ~
\.php$". The exact characters matter.

http://nginx.org/r/location

> i just want to allow access to admin.php to some ip address and deny
> others.

Either use something like "location = /admin.php", or maybe reorder to
regex locations (with ~) so they match in the order you want.

You will (probably) want to repeat your fastcgi_pass and other fastcgi_*
config lines inside the new location block. One request is handled by
one location.

Good luck with it,

f
--
Francis Daly francis@daoine.org

_______________________________________________
nginx mailing list
nginx@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx]]> Francis Daly Nginx Mailing List - EnglishWed, 06 Jun 2012 09:42:00 -0400 http://forum.nginx.org/read.php?2,227281,227281#msg-227281 block access to a file !!http://forum.nginx.org/read.php?2,227281,227281#msg-227281it must be a piece of cake but i can not find a soloution...

the problem is " location admin.php". you can check it below...

i just want to allow access to admin.php to some ip address and deny others.

if i remove allow line from it it deny all; but when I add allow line it dont work ..
please help me...
I tried too many syntax but no success.
i even add root and index to this location but browser prompt to download my php file..

please help

here 's my server section of config...very simple
server {
listen 80;
server_tokens off;
server_name www.mysite.com;
access_log /var/log/nginx/mysite.log;
error_page 404 /404.html;
error_page 500 502 503 504 /50x.html;

location / {
root /usr/share/nginx/www;
index index.php;
client_max_body_size 8m;
client_body_buffer_size 256k;
}
location = /50x.html {
root /usr/share/nginx/html;
}
location = /404.html {
root /usr/share/nginx/html;
}
location ~ /\.ht {
deny all;
}
location ~ \.php$ {
root /usr/share/nginx/www;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
set $ssl off;
if ($ssl_protocol != "" ) {
set $ssl on;
}
fastcgi_param HTTPS $ssl;
}

location ~ admin.php {
allow 217.66.196.193;
deny all;
}]]> torajx Nginx Mailing List - EnglishWed, 06 Jun 2012 09:22:50 -0400