search
HomeOperation and MaintenanceNginxHow to use Nginx to implement HTTP basic authentication

Nginx is a high-performance, reliable web server and reverse proxy server. In addition to its powerful load balancing and caching capabilities, Nginx also supports HTTP basic authentication. HTTP basic authentication is a simple authentication method that verifies the user's identity by adding a username and password in the request header. In this article, we will learn how to implement HTTP basic authentication using Nginx.

1. Set username and password

First, we need to create a password file. We can use the htpasswd command to create this file. htpasswd is a command line tool for managing HTTP basic authentication passwords.

We can use the following command in the terminal to create a password file:

htpasswd -c /etc/nginx/.htpasswd username

Among them, -c means to create a new password file, /etc/nginx/.htpasswd is the path to the password file , username is the username we want to add. After running this command, you will be prompted for your password. After entering the password, htpasswd will hash the password and store it in the password file.

If you want to add additional users to the password file, use the following command:

htpasswd /etc/nginx/.htpasswd username2

This command does not have the -c option because our password file already exists. After entering the command, you will be prompted for your password. Once entered, htpasswd hashes and adds the username and password to a password file.

2. Apply basic authentication in Nginx

Now, we have created a password file containing username and password hashes. Next, we need to apply HTTP basic authentication in Nginx.

We need to add the following directives in the server block or location block:

auth_basic "Restricted";
auth_basic_user_file /etc/nginx/.htpasswd;

The first directive tells Nginx to perform basic authentication on the request and display "Restricted" in the pop-up login box as Description.

The second directive tells Nginx to use the /usr/share/nginx/.htpasswd file to authenticate the user.

For example, we can add the following code in Nginx's default server block:

server {
    listen 80 default_server;
    listen [::]:80 default_server;
    root /var/www/html;
    index index.html index.htm index.nginx-debian.html;
    auth_basic "Restricted";
    auth_basic_user_file /etc/nginx/.htpasswd;
}

Now, we have successfully added basic authentication to our Nginx server.

3. Test HTTP basic authentication

Now let’s test the authentication function we just set up. We can use curl or Firefox and other tools to test.

Test using curl:

curl -I http://localhost

The command line will prompt you for your username and password. After entering the correct username and password, you can see the following code included in the HTTP response header:

HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
...

Test with Firefox:

Enter the server address http://localhost in Firefox. Firefox will pop up a window with the word "Restricted" and a description, prompting you to enter your username and password. After entering the correct username and password, you will be redirected to your server default web page.

Summary

This article introduces how to use Nginx to implement HTTP basic authentication. HTTP Basic Authentication is a simple but effective authentication method that can be used to protect sensitive resources of a web server. We can easily add HTTP Basic Authentication to our Nginx server by first creating a password file using the htpasswd command and then applying the Basic Authentication directive in the Nginx configuration.

The above is the detailed content of How to use Nginx to implement HTTP basic authentication. For more information, please follow other related articles on the PHP Chinese website!

Statement
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
内存飙升!记一次nginx拦截爬虫内存飙升!记一次nginx拦截爬虫Mar 30, 2023 pm 04:35 PM

本篇文章给大家带来了关于nginx的相关知识,其中主要介绍了nginx拦截爬虫相关的,感兴趣的朋友下面一起来看一下吧,希望对大家有帮助。

nginx限流模块源码分析nginx限流模块源码分析May 11, 2023 pm 06:16 PM

高并发系统有三把利器:缓存、降级和限流;限流的目的是通过对并发访问/请求进行限速来保护系统,一旦达到限制速率则可以拒绝服务(定向到错误页)、排队等待(秒杀)、降级(返回兜底数据或默认数据);高并发系统常见的限流有:限制总并发数(数据库连接池)、限制瞬时并发数(如nginx的limit_conn模块,用来限制瞬时并发连接数)、限制时间窗口内的平均速率(nginx的limit_req模块,用来限制每秒的平均速率);另外还可以根据网络连接数、网络流量、cpu或内存负载等来限流。1.限流算法最简单粗暴的

nginx+rsync+inotify怎么配置实现负载均衡nginx+rsync+inotify怎么配置实现负载均衡May 11, 2023 pm 03:37 PM

实验环境前端nginx:ip192.168.6.242,对后端的wordpress网站做反向代理实现复杂均衡后端nginx:ip192.168.6.36,192.168.6.205都部署wordpress,并使用相同的数据库1、在后端的两个wordpress上配置rsync+inotify,两服务器都开启rsync服务,并且通过inotify分别向对方同步数据下面配置192.168.6.205这台服务器vim/etc/rsyncd.confuid=nginxgid=nginxport=873ho

nginx php403错误怎么解决nginx php403错误怎么解决Nov 23, 2022 am 09:59 AM

nginx php403错误的解决办法:1、修改文件权限或开启selinux;2、修改php-fpm.conf,加入需要的文件扩展名;3、修改php.ini内容为“cgi.fix_pathinfo = 0”;4、重启php-fpm即可。

如何解决跨域?常见解决方案浅析如何解决跨域?常见解决方案浅析Apr 25, 2023 pm 07:57 PM

跨域是开发中经常会遇到的一个场景,也是面试中经常会讨论的一个问题。掌握常见的跨域解决方案及其背后的原理,不仅可以提高我们的开发效率,还能在面试中表现的更加

nginx部署react刷新404怎么办nginx部署react刷新404怎么办Jan 03, 2023 pm 01:41 PM

nginx部署react刷新404的解决办法:1、修改Nginx配置为“server {listen 80;server_name https://www.xxx.com;location / {root xxx;index index.html index.htm;...}”;2、刷新路由,按当前路径去nginx加载页面即可。

Linux系统下如何为Nginx安装多版本PHPLinux系统下如何为Nginx安装多版本PHPMay 11, 2023 pm 07:34 PM

linux版本:64位centos6.4nginx版本:nginx1.8.0php版本:php5.5.28&php5.4.44注意假如php5.5是主版本已经安装在/usr/local/php目录下,那么再安装其他版本的php再指定不同安装目录即可。安装php#wgethttp://cn2.php.net/get/php-5.4.44.tar.gz/from/this/mirror#tarzxvfphp-5.4.44.tar.gz#cdphp-5.4.44#./configure--pr

nginx怎么禁止访问phpnginx怎么禁止访问phpNov 22, 2022 am 09:52 AM

nginx禁止访问php的方法:1、配置nginx,禁止解析指定目录下的指定程序;2、将“location ~^/images/.*\.(php|php5|sh|pl|py)${deny all...}”语句放置在server标签内即可。

See all articles

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

AI Hentai Generator

AI Hentai Generator

Generate AI Hentai for free.

Hot Article

Hot Tools

PhpStorm Mac version

PhpStorm Mac version

The latest (2018.2.1) professional PHP integrated development tool

MantisBT

MantisBT

Mantis is an easy-to-deploy web-based defect tracking tool designed to aid in product defect tracking. It requires PHP, MySQL and a web server. Check out our demo and hosting services.

SublimeText3 Linux new version

SublimeText3 Linux new version

SublimeText3 Linux latest version

SecLists

SecLists

SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.

EditPlus Chinese cracked version

EditPlus Chinese cracked version

Small size, syntax highlighting, does not support code prompt function