Nginx Password Protect Directory Downloads Source Code

security password nginx permissions htpasswd

Let me translate the current config. Whenever browser request /wp-login.php, the request only matches section location ^~ /wp-login.php, not including your php-fpm configuration. So, nginx just apply the auth_basic and then spit out the source code of wp-login.php because nginx can't parses it.

The solution is adding php-fpm section like this

    include /etc/nginx/fastcgi_params;
    fastcgi_pass unix:/var/lib/php5-fpm/web11.sock;
    fastcgi_index index.php;
    fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    fastcgi_intercept_errors on;

inside your location ^~ /wp-login.php directive.

Source: Protecting The Wordpress Login In Nginx

Related

e2fsck on a low-memory machine: can I get more out of scratch_files or swap?
Protecting Azure Backup from malicious deletion
FTP Transfer Very Slow When Windows Firewall Enabled
Nginx Password Protect Entire Port Number 8081
Can I choose a sparse file as vdev for a zfs pool?
Reverse DNS does not match SMTP Banner [duplicate]
gateway iptables dns redirect
What alternatives to 'find' are there which will work in a cron environment in the rackspace cloud?
HAProxy health checks and changing server state
Does sendmail send everything to downstream smarthost in "single file"?
Looking for a powershell script that can pull a file from a set of PC's and FTP
How to install a newer version of PHP as a package?