HTTP .htpasswd protect sub-domain on Nginx recursively

Question

I want to password protect my developer subdomain (dev.example.com), and leave the main domain publicly available.

I want to do this recursively, so that any file or folder on the subdomain will always prompt you for a login.

In the Nginx config file, I've added the following to my dev.example.com server-block (note that I have separate server-blocks for the main and subdomain):

location ^~ / {
    auth_basic "Administrator Login";
    auth_basic_user_file /home/path/to/.htpasswd;
}

From searching around on SF, I was under the impression that the ^~ identifier makes the password protection recursive, but it doesn't.

While dev.example.com specifically prompts me for a login, dev.example.com/folder/ doesn't.

What am I doing wrong?

score 2 · Accepted Answer · answered Jan 12 '17 at 10:06

2

To protect the entire subdomain, the statements should appear in the existing server block:

server {
    server_name dev.example.com;
    auth_basic "Administrator Login";
    auth_basic_user_file /home/path/to/.htpasswd;
    ...
}

answered Jan 12 '17 at 10:06

Richard Smith

13,974

Don Dilanga · Answer 2 · 2017-01-12T21:36:08.547

0

This should work. And make sure to restart nginx after completing the edit.

server {
    listen 80 default_server;
    listen [::]:80 default_server;

    root /var/www/html/subdomain;
    index index.php index.html index.html
    server_name dev.example.com;;

    location ^~ / {
        auth_basic "Restricted";
        auth_basic_user_file /etc/nginx/.htpasswd;
    }

}

edited Jan 12 '17 at 21:36

answered Jan 12 '17 at 21:30

Don Dilanga

242
3
9

HTTP .htpasswd protect sub-domain on Nginx recursively

2 Answers2