Set up Password Authentication with NGINX
Learn how to set up a basic HTTP authentication system. This will allow you to password protect particular directories on your website, so that they can only be accessed after logging in with a username and password.
This form of password protection is a fast and easy way to provide a basic level of security via access authorization to a website.
Requirements
- A server running Linux (Ubuntu 16.04 or CentOS 7)
- NGINX installed and running.
Free Cloud Server Trial from IONOS
Try out a Cloud Server for free now - test your IONOS Cloud Server for 30 days!
Create the Password File with OpenSSH
Your server will most likely already have OpenSSH installed. If not, you can install it with the commands:
CentOS 7:
sudo yum install openssh openssh-server openssh-clients openssl-libs
Ubuntu 16.04:
sudo apt-get install openssh-server
Use the following command to create a file named .htpasswd in the /etc/nginx directory:
sudo sh -c "echo -n '[username]:' >> /etc/nginx/.htpasswd"
For example, to add the user jdoe the command is:
sudo sh -c "echo -n 'jdoe:' >> /etc/nginx/.htpasswd"
Then add a password for this user with the command:
sudo sh -c "openssl passwd -apr1 >> /etc/nginx/.htpasswd"
You will be prompted to enter the password twice to confirm it.
Transfer your domain to IONOS
With our easy transfer process you can be sure your domain is transferred as quickly and hassle-free as possible.
Transfer your domain now and benefit from a wide range of comprehensive features.
Set Up Password Authentication in NGINX
The next step is to add the password authentication directives to the NGINX configuration file for the domain on which you are installing Joomla.
In most cases, the domain's configuration file will be located in /etc/nginx/conf.d on CentoS 7, and /etc/nginx/sites-available on Ubuntu 16.04.
Edit this file:
CentOS 7:
sudo nano /etc/nginx/conf.d/example.com.conf
Ubuntu 16.04:
sudo nano /etc/nginx/sites-available/example.com.conf
You will add the following lines to this file:
auth_basic "Password Required";
auth_basic_user_file /etc/nginx/.htpasswd;
These two directives will provide a basic password restriction to the specified directory. NGINX offers many ways you can set up password protection for various files and directories, including the ability to filter by file type. If you want to set up a more complicated system for password-protection, consult the official NGINX documentation for more details.
To protect the entire site, put the directives inside the existing location / command block. If no command block exists, add one:
location / {
auth_basic "Password Required";
auth_basic_user_file /etc/nginx/.htpasswd;
}
If you wish to password-protect a sub-directory, specify that directory instead:
location /admin {
auth_basic "Password Required";
auth_basic_user_file /etc/nginx/.htpasswd;
}
Be sure to add this location block inside the server block. For example, if your configuration file looks like this:
server {
listen 80;
server_name example.com;
root /usr/share/nginx/example.com/html/;
index index.php index.html index.htm;
}
After adding the new section, it will look like this:
server {
listen 80;
server_name example.com;
root /usr/share/nginx/example.com/html/;
index index.php index.html index.htm;
location / {
auth_basic "Password Required";
auth_basic_user_file /etc/nginx/.htpasswd;
}
}
Save and exit the file, then restart NGINX:
sudo nginx -s reload
To test the configuration, visit the URL in a browser. If the configuration is set up correctly, you will see a pop-up message asking you to enter the username and password.
SSL certificates from IONOS
Protect your domain and gain visitors' trust with an SSL-encrypted website!
Related articles
NGINX Tutorial - Commands and configurations
Nginx is very different from traditional server software such as Apache in the way that it responds to client requests and the fact that it also involves configuration changes. In this nginx tutorial you can learn how to make changes without having to restart the web server software as well as how to set up a simple proxy server for images in just a few steps.
NGINX — the quick and efficient web server
For years, Apache had been the uncontested go-to web servers and comprised the basis of most websites published in the World Wide Web. The increasing technical requirements of modern web projects and the growing demands and expectations of internet users has brought on a sea change of sorts. Alternatives like NGINX are becoming ever more popular and are slowly creeping up on the classic server…
NGINX vs. Apache
Apache vs. NGINX – while one is said to be bulky and unwieldy, the other is considered slim and high-performance. But can we be this general? In fact, both web servers are based on fundamentally different concepts when it comes to connection management, interpretation of client requests, or configuration options. The range of functions also display clear differences in software alignment. While…
Install and Run Joomla on an NGINX Server
This tutorial includes step-by-step instructions for installing Joomla on an NGINX server. Joomla is a popular and award-winning content management system (CMS) which has won over millions of users thanks to its extensibility and ease-of-use.
Cloud Clustering
Cloud Servers are well suited to being deployed as a Cloud Server Cluster. Learn what a Cloud Server Cluster is, the problems that a Cloud Server Cluster can solve, and how clustering a set of Cloud Servers can benefit your project.
ESB ProfessionalShutterstock How to install Nginx on Ubuntu 20.04 step by step
Nginx is a reliable, resource-saving web server that has established itself as a viable alternative to Apache. The open-source software is often used as a reverse proxy, load balancer or HTTP cache. It can be installed and managed quickly and easily on Ubuntu 20.04. In this tutorial, you’ll learn how to install Nginx on Ubuntu 20.04 and launch your first website. Keep on reading to find out how.
