Dear Francis
it does not work:
404 Not Found
this is my code
location /asrxxxx {
default_type 'text/html; charset=UTF-8';
internal;
.....
}
location /carrier_00163e1bb23c {
default_type 'text/html; charset=UTF-8';
.....
}
in the public location, /carrier_00163e1bb23c, I have
</div>
<iframe src="/asrxxxx">
Your browser does not support iframes
</iframe>
</div>
so how do I block the public from looking at my HTML and executing directly
/asrxxxx?
Is this a bug?
many thanks for your help.
Philip
On Sun, Feb 19, 2023 at 8:20 AM Francis Daly <francis@daoine.org> wrote:
> On Sun, Feb 19, 2023 at 01:52:12AM -0500, Saint Michael wrote:
>
> Hi there,
>
> > it fails with forbidden. But I am using only from another location inside
> > the same server.
> >
> > How do I protect internal service locations and at the same time use
> them?
>
> If you are asking "how do I ensure that a location{} can only be used for
> internal redirects/requests", then you want http://nginx.org/r/internal
>
> Cheers,
>
> f
> --
> Francis Daly francis@daoine.org
> _______________________________________________
> nginx mailing list
> nginx@nginx.org
> https://mailman.nginx.org/mailman/listinfo/nginx
>
_______________________________________________
nginx mailing list
nginx@nginx.org
https://mailman.nginx.org/mailman/listinfo/nginx