Hi,
I have set up Apache for an existing site to use either ip whitelisting or basic authentication. If the user's IP is not on the IP whitelist, it asks him for a password. My htaccess file looks something like this:
---------------
Order deny,allow
Deny from all
AuthName "Restricted Area"
AuthUserFile /path/to/passwords
AuthType Basic
Require valid-user
Allow from 123.456.789.10
Allow from 123.456.789.11
Satisfy Any
---------------
Is it possible to do something like this with Nginx?