1、配置nginx.conf
server {
listen 80;
listen [::]:80;
server_name xxx.xxx.xxx;
return 301 https://$host$request_uri;
}
server {
listen [::]:443 http2 ssl; # managed by Certbot
listen 443 http2 ssl; # managed by Certbot
ssl_session_tickets off;
ssl_certificate /etc/nginx/conf.d/xxx.xxx.xxx.crt;
ssl_certificate_key /etc/nginx/conf.d/xxx.xxx.xxx.key;
server_name xxx.xxx.xxx;
location / {
auth_basic "Authentication required";
auth_basic_user_file /etc/nginx/conf.d/.htpasswd;
proxy_pass http://xxx.xxx.xxx.xxx:xxx;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_cache_bypass $http_upgrade;
}
}
2、生成conf.d/.htpasswd文件,需要安装apache2-utils
(Debian, Ubuntu) 或者 httpd-tools
(RHEL/CentOS/Oracle Linux)
htpasswd -c conf.d/.htpasswd 用户名
3、查看生成conf.d/.htpasswd文件
cat conf.d/.htpasswd
用户名:$apr1$/woC1jnP$KAh0SsVn5qeSMjTtn0E9Q0