Ping a Specific Port

Question

bwizzy

Asked: 2011-02-04 09:53:57 +0800 CST2011-02-04 09:53:57 +0800 CST 2011-02-04 09:53:57 +0800 CST

How to use nginx to proxy to a host requiring authentication?

772

How can I setup an nginx proxy_pass directive that will also include HTTP Basic authentication information sent to the proxy host?

This is an example of the URL I need to proxy to:

http://username:[email protected]/export?uuid=1234567890

The end goal is to allow 1 server present files from another server (the one we're proxying to) without exposing the URI of the proxy server. I have this working 90% correct now from following the Nginx config found here:

http://kovyrin.net/2010/07/24/nginx-fu-x-accel-redirect-remote/

I just need to add in the HTTP Basic authentication to send to the proxy server

4 Answers

Voted

Shai · Answer 1 · 2011-12-30T23:31:06+08:00

Shai

2011-12-30T23:31:06+08:002011-12-30T23:31:06+08:00

I did a writeup on this a while ago. See the details here:

http://shairosenfeld.blogspot.com/2011/03/authorization-header-in-nginx-for.html

For example:

 location / {
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_pass http://6.6.6.6:80;
    proxy_set_header Authorization "Basic a2luZzppc25ha2Vk";
 }

"a2luZzppc25ha2Vk" is "king:isnaked" base64 encoded, so that would work for

http://king:[email protected]

Feel free to check out blog post for more details.

68

bwizzy · Answer 2 · 2011-02-04T13:53:41+08:00

Best Answer

bwizzy

2011-02-04T13:53:41+08:002011-02-04T13:53:41+08:00

I got this working with alvosu's answer but I had to enter the word "Basic" inside the quotation of the base64 string so it looked like this:

proxy_set_header Authorization "Basic dGVzdHN0cmluZw==";

26

alvosu · Answer 3 · 2011-02-04T10:01:44+08:00

alvosu

2011-02-04T10:01:44+08:002011-02-04T10:01:44+08:00

Set

proxy_set_header Authorization "Basic USER_AND_PASS"

where USER_AND_PASS = base64(user:pass).

6

sunapi386 · Answer 4 · 2019-01-12T14:58:40+08:00

sunapi386

2019-01-12T14:58:40+08:002019-01-12T14:58:40+08:00

Remove the authorization header that gets passed forwarded by nginx with proxy_set_header Authorization "";.

I configured nginx to do basic auth but the Authorization header was getting passed along in the proxy_pass directive and the receiving end couldn't handle the token.

# Basic Auth
auth_basic "Private Stuff";
auth_basic_user_file /etc/nginx/.htpasswd;

location /server {
    proxy_pass http://172.31.31.140:9090;
    proxy_set_header Authorization "";
}

(Specific to my case, this error was returned Reason: No AuthenticationProvider found for org.springframework.security.authentication.UsernamePasswordAuthenticationToken)

4

How to use nginx to proxy to a host requiring authentication?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?