Nginx、http 身份验证和动态 IP 地址问题

tag-icon tag-icon nginx authentication nat reverse-proxy http-basic-authentication
Nginx、http 身份验证和动态 IP 地址问题

我正在尝试将 Nginx 作为反向代理来验证执行入站 http 请求的用户。

我的 ISP 为我提供了动态 IP。我不确定如何配置我的 ADSL 路由器(NAT 规则)。

我也想要 Nginx监听端口 80 并重定向到 8080 (tomcat)。

这是我的nginx.conf文件:

user www-data;
worker_processes 4;
pid /run/nginx.pid;

events {
    worker_connections 768;
    # multi_accept on;
}

http {
    include       mime.types;
    default_type  application/octet-stream;

    # Main website Tomcat instance
    upstream tomcat {
        server  127.0.0.1:8080;
    }

    auth_basic "Restricted";                                #For Basic Auth
    auth_basic_user_file /home/julien/system/temp/.htpasswd;  #For Basic Auth

    server {
        listen       80;
        server_name  92.128.100.110;

        location / {
            # Proxy all the requests to Tomcat
            proxy_pass  http://127.0.0.1:8080;
            proxy_set_header  Host $http_host;
        proxy_set_header Authorization ""; #$http_authorization;
        proxy_pass_header  Authorization;
        }
    }
}

以下是default配置文件:

server {
    listen 80;
    listen [::]:80 default_server ipv6only=on;

    root /usr/share/nginx/html;
    index index.html index.htm;

    # Make site accessible from http://localhost/
    server_name 92.128.100.110;

    auth_basic "Restricted";                                #For Basic Auth
    auth_basic_user_file /home/julien/system/temp/.htpasswd;  #For Basic Auth


    location / {
        # First attempt to serve request as file, then
        # as directory, then fall back to displaying a 404.
        try_files $uri $uri/ /index.html;
        # Uncomment to enable naxsi on this location
        # include /etc/nginx/naxsi.rules
    }

    # Only for nginx-naxsi used with nginx-naxsi-ui : process denied requests
    #location /RequestDenied {
    #   proxy_pass http://127.0.0.1:8080;    
    #}

    #error_page 404 /404.html;

    # redirect server error pages to the static page /50x.html
    #
    #error_page 500 502 503 504 /50x.html;
    #location = /50x.html {
    #   root /usr/share/nginx/html;
    #}

    # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
    #
    #location ~ \.php$ {
    #   fastcgi_split_path_info ^(.+\.php)(/.+)$;
    #   # NOTE: You should have "cgi.fix_pathinfo = 0;" in php.ini
    #
    #   # With php5-cgi alone:
    #   fastcgi_pass 127.0.0.1:9000;
    #   # With php5-fpm:
    #   fastcgi_pass unix:/var/run/php5-fpm.sock;
    #   fastcgi_index index.php;
    #   include fastcgi_params;
    #}

    # deny access to .htaccess files, if Apache's document root
    # concurs with nginx's one
    #
    #location ~ /\.ht {
    #   deny all;
    #}
}

未执行 http 身份验证。我不确定我的配置出了什么问题。有人可以帮忙吗?

答案1

< bot >将自答问题转换为 CW</ bot >

我终于让它工作了感谢 Pothi。这是我的最终配置nginx.conf

server {
        listen       80;
        server_name  _;
        proxy_set_header Authorization ""; #$http_authorization;
        proxy_pass_header  Authorization;
        auth_basic "Restricted";                                #For Basic Auth
        auth_basic_user_file /home/julien/system/temp/.htpasswd;  #For Basic Auth

        location / {
            # Proxy all the requests to Tomcat
            proxy_pass  http://127.0.0.1:8080;
            proxy_set_header  Host $http_host;
        }
    }

Nat 规则:

  • 端口:80
  • 输出端口:80

并且不要忘记在 ufw 防火墙上打开端口 80。

相关内容