Welcome! Log In Create A New Profile

Advanced

Nginx auth_basic don't work..

Posted by hungtuan 
Forum List Message List New Topic
hungtuan
Nginx auth_basic don't work..
January 07, 2013 04:48AM
Hi all !

I want to secure all my website, and exclude one location.
But it don't work .. My exclude location isnt unprotected.
I want to unsecure /commande/validation/summary.

Can you help me please?

Here my nginx.conf

server {
listen 80; ## listen for ipv4; this line is default and implied
server_name myserver.fr;
root /var/www/website/web;
index app_test.php;
auth_basic "Closed";
auth_basic_user_file /var/www/website/web/.htpasswd;
access_log /var/log/nginx/localhost.access.log;
error_log /var/log/nginx/localhost.error.log;
# Limitation d'accés
client_max_body_size 20M;
#Default Location
location / {
if (-f $request_filename) {


break;
}



rewrite "^/([a-zA-Z]{0,10})\/?media\/(tmp|user|animal|article|association|common_content|event|product)\/(.{36})\/.*_(min|moy|med|small|photo|zoom|pano)\.(.{3,4})$" /$1/media/$2/$3_$4.$5 break;
rewrite "^/([a-zA-Z]{0,10})\/?media\/(tmp|user|animal|article|association|common_content|event|product)\/(.{36})\/.*\.(.{3,4})$" /$1/media/$2/$3.$4 break;

rewrite "^/([a-zA-Z]{0,10})\/?upload\/(animal|association|ckeditor)\/(.{36})\/.*\.(.{3,4})$" /$1/upload/$2/$3.$4 break;


rewrite ^(.*)$ /app_test.php last;

}

location = ~/commande/validation/summary {

satisfy any;
auth_basic off;
allow all;
}

## Images and static content is treated different
location ~* ^(media|upload)/[^/]+/[^/]+\.(jpg|jpeg|gif|css|png|js|ico|xml)$ {
access_log off;
expires 30d;
root /var/www/website/web;
}
## Parse all .php file in the /var/www directory
location ~ .php$ {
satisfy any;
#auth_basic "Authentification Required";
#auth_basic_user_file /var/www/website/web/.htpasswd;

fastcgi_split_path_info ^(.+\.php)(.*)$;
fastcgi_pass backend;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /var/www/website/web/$fastcgi_script_name;
include fastcgi_params;
fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;
fastcgi_intercept_errors on;
fastcgi_ignore_client_abort off;
fastcgi_connect_timeout 60;
fastcgi_send_timeout 128;
fastcgi_read_timeout 128;
fastcgi_buffer_size 256k;
fastcgi_buffers 4 256k;
fastcgi_busy_buffers_size 256k;
fastcgi_temp_file_write_size 256k;
}
##Disable viewing .htaccess & .htpassword
location ~ /\.ht {
#deny all;
allow all;
}

upstream backend {
server 127.0.0.1:9000;
}


Thanks for your help.
hungtuan
Reply Quote
Newer Topic Older Topic
Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 174
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready