updated nginx state

2025-01-13 14:54:16 +07:00 · 2025-01-13 14:54:16 +07:00 · 0c6900f2d9
commit 0c6900f2d9
parent 0b43023eda
3 changed files with 40 additions and 0 deletions
--- a/states/nginx/templates/types/dokuwiki.j2
+++ b/states/nginx/templates/types/dokuwiki.j2
@ -13,6 +13,19 @@ server {

  index index.php index.html;

+  {%- if internal and not auth %}
+  if ($allow = false) {
+    return 403;
+  }
+  {%- endif %}
+  if ($allow = true) {
+    set $auth "off";
+  }
+  {%- if auth %}
+  auth_basic $auth;
+  auth_basic_user_file {{ config_dir }}/auth/htpasswd;
+  {%- endif %}
+
  {%- for key,value in headers.items() %}
  add_header {{ key }} "{{ value }}";
  {%- endfor %}
--- a/states/nginx/templates/types/nextcloud.j2
+++ b/states/nginx/templates/types/nextcloud.j2
@ -16,6 +16,20 @@ server {
  error_page 404 /core/templates/404.php;
  client_max_body_size 4G;
  fastcgi_buffers 64 4K;
+
+  {%- if internal and not auth %}
+  if ($allow = false) {
+    return 403;
+  }
+  {%- endif %}
+  if ($allow = true) {
+    set $auth "off";
+  }
+  {%- if auth %}
+  auth_basic $auth;
+  auth_basic_user_file {{ config_dir }}/auth/htpasswd;
+  {%- endif %}
+
  add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
  {%- for key,value in headers.items() %}
  add_header {{ key }} "{{ value }}";
--- a/states/nginx/templates/types/zabbix.j2
+++ b/states/nginx/templates/types/zabbix.j2
@ -13,6 +13,19 @@ server {

  index index.php index.html;

+  {%- if internal and not auth %}
+  if ($allow = false) {
+    return 403;
+  }
+  {%- endif %}
+  if ($allow = true) {
+    set $auth "off";
+  }
+  {%- if auth %}
+  auth_basic $auth;
+  auth_basic_user_file {{ config_dir }}/auth/htpasswd;
+  {%- endif %}
+
  {%- for key,value in headers.items() %}
  add_header {{ key }} "{{ value }}";
  {%- endfor %}