Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

nginx and auth_basic

Tags:

nginx

basic-authentication

.htpasswd

I am trying to get basic authentication working with nginx in Ubuntu Jaunty. In nginx.conf, I added these two lines under the server context:

server {
   ...
   auth_basic "Restricted Access";
   auth_basic_user_file /etc/nginx/.htpasswd;
   ...
}

Then I apt-get'ed apache2-utils to get htpasswd, which I used to create the htpasswd file:

htpasswd -d -c /etc/nginx/.htpasswd joe

When I try to access the site, the authentication dialog comes up as expected, but when I put in the username and password, it just refreshed the dialog box. It doesn't seem to like the password I am providing it. I tried running htpasswd both with and without the -d option, but still no luck. It refused to authenticate. Any ideas what I'm doing wrong?

Any help would be appreciated.

like image 918
KP. Avatar asked Jan 06 '10 02:01

KP.

People also ask

What is Auth_basic in nginx?

auth_basic. auth_basic_user_file. The ngx_http_auth_basic_module module allows limiting access to resources by validating the user name and password using the “HTTP Basic Authentication” protocol. Access can also be limited by address, by the result of subrequest, or by JWT.

How do I generate Htpasswd Nginx?

htpasswd within our /etc/nginx configuration directory. The first time we use this utility, we need to add the -c option to create the specified file. We specify a username ( sammy in this example) at the end of the command to create a new entry within the file: sudo htpasswd -c /etc/nginx/.

2 Answers

Things I would check:

  • Permissions on `/etc/nginx/.htpasswd` - Can the file be read by the account running nginx? You could try, temporarily, using `chmod 644` to make sure everyone can read it. If that works, then you can sort out an appropriate combination of `chown` and `chmod` settings so that nginx and you/root can read it but other users cannot (for security).
  • Ensure that `htpasswd` is generating the hash in the right form; it's usually about 13 alphanumeric characters (for example `username:wu.miGq/e3nro`). The command CAN generate MD5 hashes too which would look more like `username:$apr1$hzB2K...$b87zlCYMKufOxn9ol5QV4/` these don't work with nginx.
  • Look into increasing the debug output of nginx and check the error logs for clues.
like image 125
Nick Avatar answered Sep 21 '22 15:09

Nick

Old thread, but no answer, and well referenced on Google.

If you get this error and have tried the other suggestions, check the permissions of the parent folder of your .htpasswd file: the nginx user (www-data by default) should have read and execute permissions (this fixed it for me).

like image 30
personne3000 Avatar answered Sep 22 '22 15:09

personne3000
Sign in to Comment

Related questions

Docker compose with nginx keeps displaying welcome page
Connect to unix:/var/run/php5-fpm.sock failed. What is wrong with my setup?
nginx redirect all directories except one
Cache a static file in memory forever on Nginx?
Kubernetes Nginx Ingress not finding service endpoint
SSL Pass-Through in Nginx Reverse proxy?
how to "allow from hostname" in nginx config
How to allow access via CORS to multiple domains within nginx
nginx keep port number when 301 redirecting
How to serve images with nginx
What does the Resolver param in nginx do?
nginx - redirect a certain path to another domain
How to match question mark "?" as regexp on nginx.conf location
Is node.js ready for production use? [closed]
nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address already in use) on docker
How to disable output buffering in nginx for PHP application
Nginx unknown directive for passenger_root
nginx 301 redirect with query string
Sidekiq worker not getting triggered
nginx: [emerg] unknown directive " " in /etc/nginx/sites-enabled/example.com:3

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!