Nginx基于用户的访问控制(Ngx_http_auth_basic_module)
官方文档:http://nginx.org/en/docs/http/ngx_http_auth_basic_module.html
官方示例:The ngx_http_auth_basic_module module allows limiting access to resources by validating the user name and password using the “HTTP Basic Authentication” protocol.基于HTTP,适用basic机制进行用户认证;
#httpd-tools是Apache的工具包
[iyunv@GaoServer ~]# yum install httpd-tools -y
#htpasswd命令是Apache的web服务器内置工具,用于创建和更新存储用户名密码的文本文,用于HTTP用户的basic认证
[iyunv@GaoServer ~]# htpasswd -h
htpasswd: illegal option -- h
......#常用选项:
-c Create a new file. #创建一个加密文件;
-n Don't update file; display results on stdout. #不更新加密文件,将加密后的账号输出至屏幕;
-b Use the password from the command line rather than prompting for it. #在命令行中使用口令,而不是提示口令;
-m Force MD5 encryption of the password (default). #MD5算法加密
-d Force CRYPT encryption of the password (8 chars max, insecure). #CRYPT算法加密
-s Force SHA encryption of the password (insecure). #SHA算法加密
-p Do not encrypt the password (plaintext, insecure). #使用明文密码
-D Delete the specified user. #删除指定用户
-v Verify password for the specified user.
......
#创建一个加密文件MD5算法加密:(创建隐藏文件)
[iyunv@GaoServer ~]# htpasswd -c -m /etc/nginx/.htpasswd gning
New password:
Re-type new password:
Adding password for user gning
[iyunv@GaoServer ~]# cat /etc/nginx/.htpasswd
gning:$apr1$pTwVGCrf$BCWZFeQXXjS8Yb.JflpiL.
#修改配置文件:
[iyunv@GaoServer ~]# vim /etc/nginx/conf.d/Vhost.conf
server {
listen 80;
location /server/ {
root /data/html/;
auth_basic "User is"; #访问认证输入信息显示给用户;
auth_basic_user_file /etc/nginx/.htpasswd; #定义使用什么账号文件;
}
}
[iyunv@GaoServer ~]# nginx -t
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
[iyunv@GaoServer ~]# nginx -s reload
QQ群⑧:
窥视卡
雷达卡
发表于 2017-10-17 09:31:36
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
显身卡