您的位置:首页 > 运维架构 > Nginx

Nginx配置之访问控制、目录用户验证、防盗链

2018-11-18 21:55 537 查看

1.访问控制 只允许本机访问a目录 其他机器拒绝访问

location /a {
allow 127.0.0.1;
allow 192.168.10.42;
deny all;

return 404;
#return http://www.jd.com;
}

2.目录用户验证

location /b {
auth_basic "wsy登陆验证";
auth_basic_user_file /etc/nginx/htpasswd;
}

mkdir /etc/nginx
yum -y install httpd-tools
htpasswd -m /etc/nginx/htpasswd wwwsy(用户名)

3.防盗链

#location /c {
location ~* \.(png|gif|bmp)$ {
valid_referers none blocked *.ayitula.com; # 表示要么没有Referrer要么Referrer:blocked要么Referrer: *.ayitula.com
if ($invalid_referer) {
return 403;
}
}

完整的配置文件

user  www;
worker_processes  4;
#error_log  logs/error.log;
#error_log  logs/error.log  notice;
#error_log  logs/error.log  info;

#pid        logs/nginx.pid;

events {
worker_connections  1024;
}

http {
include       mime.types;
default_type  application/octet-stream;

#log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
#                  '$status $body_bytes_sent "$http_referer" '
#                  '"$http_user_agent" "$http_x_forwarded_for"';
#

log_format baism_01 ‘[$time_local] $remote_addr "$request" $status’;

log_format main_json '{"@timestamp":"$time_local",'
'"client_ip": "$remote_addr",'
'"request": "$request",'
'"status": "$status",'
'"bytes": "$body_bytes_sent",'
'"x_forwarded": "$http_x_forwarded_for",'
'"referer": "$http_referer",'
'}';

#access_log  logs/access.log  main;

sendfile        on;
#tcp_nopush     on;

#keepalive_timeout  0;
keepalive_timeout  65;

#gzip  on;

####default web
server {
listen       80;
server_name  localhost;

charset utf-8;

access_log  logs/host.access.log  main_json;

location / {
root   html;
index  index.html index.htm;
}

#访问控制 只允许本机访问a目录  其他机器拒绝访问
location /a {
allow 127.0.0.1;
allow 192.168.10.42;
deny all;

return 404;
#return http://www.jd.com;
}
#目录用户验证:  任何人都可以访问,但是需要凭用户密码才能访问
location /b {
auth_basic "wsy登陆验证";
auth_basic_user_file /etc/nginx/htpasswd;

}

# 防盗链
#location /c {
location ~* \.(png|gif|bmp)$ {
valid_referers none blocked *.ayitula.com;
if ($invalid_referer) {
return 403;
}
}

#error_page  404              /404.html;

# redirect server error pages to the static page /50x.html
#
error_page   500 502 503 504  /50x.html;
location = /50x.html {
root   html;
}

}
}
阅读更多
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 点击这里给我发消息
标签: 
相关文章推荐