Nginx/Password

From charlesreid1

Revision as of 16:48, 6 November 2018 by Admin (talk | contribs) (Created page with "To password protect a folder on an Nginx server: * Create an .htpaasswd file that contains the username and the hashed password * instruct nginx to use the .htpasswd file to...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

To password protect a folder on an Nginx server:

  • Create an .htpaasswd file that contains the username and the hashed password
  • instruct nginx to use the .htpasswd file to authenticate users trying to access a particular location

Create the Password File

OpenSSL

Here we use openssl to create the password file, which is a hidden file called .htpasswd in the /etc/nginx configuration directory.

Suppose you want to let people access the web server using the username foo and the password bar.

Set the username foo: 

    sudo sh -c "echo -n 'foo:' >> /etc/nginx/.htpasswd"

Now add the hashed password bar using openssl: 

    sudo sh -c "openssl passwd -apr1 >> /etc/nginx/.htpasswd"

You can repeat this process for additional usernames. You can see how the usernames and encrypted passwords are stored within the file by typing: 

    cat /etc/nginx/.htpasswd

Output 

foo:$apr1$wI1/ER4B$kTOuTJHkTWkekoQnXqC1d1
Retrieved from "https://charlesreid1.com/w/index.php?title=Nginx/Password&oldid=25204"