配置文件:

server {

server_name youdomain.proxygl.com;
access_log logs/youdomain.proxygl.com_access.log;

gzip off;
listen 443 ssl http2;
ssl_certificate /etc/letsencrypt/live/youdomain.proxygl.com/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/youdomain.proxygl.com/privkey.pem; # managed by Certbot

root /opt/www_youdomain.proxygl.com;
auth_basic "fun";
auth_basic_user_file /opt/nginx/conf/youdomain.proxygl.com.passwd;

location / {
resolver 8.8.8.8;
proxy_ignore_headers "Set-Cookie";
proxy_hide_header Set-Cookie;
proxy_set_header Cookie "";
proxy_set_header Accept "";
proxy_set_header Accept-Encoding "";

proxy_pass https://www.google.com;
}
}

auth_basic_user_file的格式如下:

# comment
name1:password1
name2:password2:comment
name3:password3

但是其中的password是要加密存储的,可以使用Openssl工具来生成:
输入两次密码,Openssl将输出加密后的密码密文。

[root]# openssl passwd
Password:
Verifying - Password:

将密文复制到auth_basic_user_file里相应用户名后面即可。

标签: Nginx

添加新评论

您是第 67984 位访客