How Nginx implements access control configuration based on user authentication

How Nginx implements access control configuration based on user authentication requires specific code examples

Nginx is a high-performance web server software, in addition to common static file services In addition to the reverse proxy function, Nginx also provides many powerful functions, such as user authentication, access control, etc. In this article, we will introduce how to use Nginx to implement access control configuration based on user authentication, and provide specific code examples.

First, we need to add the following code to the Nginx configuration file to enable the user-based authentication function:

location / {
    auth_basic           "Restricted";                      # 启用基于用户认证的访问控制
    auth_basic_user_file /etc/nginx/.htpasswd;              # 指定保存用户认证信息的文件路径
    try_files            $uri $uri/ /index.php?$query_string; # 其他需要处理的请求
}

In the above code, auth_basic means enabling user-based authentication function, and sets an authentication prompt message "Restricted". auth_basic_user_fileSpecifies the file path to save user authentication information. This file can be generated using the htpasswd tool.

Next, we need to use the htpasswd tool to generate the user authentication information file. Run the following command in the terminal:

$ htpasswd -c /etc/nginx/.htpasswd username

In the above command, -c means to create a new file, /etc/nginx/.htpasswd is to save the user authentication The file path of the information, username is the user name that needs to be added to the authentication file. After executing the above command, you will be asked to set a password.

Now, let’s create a simple example to test access control based on user authentication.

Suppose we have a website where only authenticated users can access the /admin directory. Add the following code to the Nginx configuration file:

location /admin/ {
    auth_basic           "Restricted";                      # 启用基于用户认证的访问控制
    auth_basic_user_file /etc/nginx/.htpasswd;              # 指定保存用户认证信息的文件路径
    try_files            $uri $uri/ /index.php?$query_string; # 其他需要处理的请求
}

Save the configuration file and reload the Nginx service. Then, try to access the /admin directory and you will be asked to enter your username and password.

The above are the specific steps and sample code for using Nginx to implement access control configuration based on user authentication. By using these features, you can effectively protect your website from unauthorized users. Remember that for security purposes, you should change user authentication information regularly and limit access to the files that hold user authentication information.

The above is the detailed content of How Nginx implements access control configuration based on user authentication. For more information, please follow other related articles on the PHP Chinese website!