84669 person learning
152542 person learning
20005 person learning
5487 person learning
7821 person learning
359900 person learning
3350 person learning
180660 person learning
48569 person learning
18603 person learning
40936 person learning
1549 person learning
1183 person learning
32909 person learning
公司搭建了服务器,希望只有内网以及员工自己的机器能够访问一个端口。目前的做法是使用iptables封死了所有从外部对这个端口的访问,然后添加例外使员工能够从外部访问。这样的效率极低。有没有什么方便的工具能够使用类似token鉴权一类的方式进行限制?
拥有18年软件开发和IT教学经验。曾任多家上市公司技术总监、架构师、项目经理、高级软件工程师等职务。 网络人气名人讲师,...
It just so happens that our company has had similar needs. We use nginx to forward this port, and then use nginx’s basic authentication function and htpasswd to generate a password, so that it can be accessed through USERNAME:USERPASSWD@IP:PORT.
Reference: https://www.digitalocean.com/community/tutorials/how-to-set-up-a-private-docker-registry-on-ubuntu-14-04 step4
Use pam authentication, one account per person
I have heard of LDAP. Someone recommended it to me, but I have never used it. You can check it out.
It just so happens that our company has had similar needs. We use nginx to forward this port, and then use nginx’s basic authentication function and htpasswd to generate a password, so that it can be accessed through USERNAME:USERPASSWD@IP:PORT.
Reference: https://www.digitalocean.com/community/tutorials/how-to-set-up-a-private-docker-registry-on-ubuntu-14-04 step4
Use pam authentication, one account per person
I have heard of LDAP. Someone recommended it to me, but I have never used it. You can check it out.