Bypass basic auth for letsencrypt acme requests, reload nginx after ssl renewals

2025-06-18 18:16:26 +00:00 · 2018-03-16 10:53:50 +10:00
parent b324110c49
commit 36896bcfc9
3 changed files with 11 additions and 7 deletions
--- a/manager/src/backend/templates/proxy.conf.ejs
+++ b/manager/src/backend/templates/proxy.conf.ejs
@ -20,14 +20,13 @@ server {
  ssl_certificate_key /etc/letsencrypt/live/<%- hostname %>/privkey.pem;
 <% } -%>

-<% if (typeof access_list_id !== 'undefined' && access_list_id) { -%>
-  auth_basic            "Authorization required";
-  auth_basic_user_file  /config/access/<%- access_list_id %>;
-<% } -%>
-
 <%- typeof advanced !== 'undefined' && advanced ? advanced : '' %>

  location / {
+    <% if (typeof access_list_id !== 'undefined' && access_list_id) { -%>
+    auth_basic            "Authorization required";
+    auth_basic_user_file  /config/access/<%- access_list_id %>;
+    <% } -%>
    <%- typeof force_ssl !== 'undefined' && force_ssl ? 'include conf.d/include/force-ssl.conf;' : '' %>
    include conf.d/include/proxy.conf;
  }