header

Nginx Restrincting Access

Access can be denied by using HTTP basic authentication. To enable authentication, use the auth_basic directive. Users then must enter their valid username and password to get access to the website

server {
    ...
    auth_basic "closed website";
    auth_basic_user_file /etc/nginx/htpasswd;
}

You must generate that htpasswd file, as follow:

sudo htpasswd -c htpasswd ${username}

Next the prompt will ask for a new password, as soon as we done this step, a new htpasswd file will be generated with the username and encrypted password.

nginxUser:$apr1$TthgC50M$XNdndu.cVIQh6/wGQf.dV0

Filtering by IP

Nginx comes with a simple module called ngx_http_access_module to allow or deny access to IP address. You need to create a file at /etc/nginx/conf.d/blockip.conf

allow   189.212.35.22;
deny    all;

Be sure you have this line in your /etc/nginx/nginx.conf file

include /etc/nginx/conf.d/*.conf;

Finally restart your nginx service

sudo service nginx restart

Return to the main article

With your donation, you help me to maintain this site and posts.





comments powered by Disqus