I'm trying to restrict access to /web/database/manager and selector. I've built a .htpasswd file. The problem is that the following code doesn't work. I can still access /web/database/manager and selector
upstream myodoo {
server 127.0.0.1:8069;
}
server {
listen 443 default;
server_name myodoo.myodoo-hosting.com;
access_log /var/log/nginx/oddo.access.log;
error_log /var/log/nginx/oddo.error.log;
if ($scheme = http) {
return 301 https://myodoo.my-hosting.com$request_uri;
}
# SSL cerificate details
ssl on;
ssl_certificate /etc/letsencrypt/live/myodoo.my-hosting.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/myodoo.my-hosting.com/privkey.pem; keepalive_timeout 60;
ssl_ciphers EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
proxy_buffers 16 64k;
proxy_buffer_size 128k;
location / {
proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
proxy_redirect off;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto https;
proxy_pass http://myodoo;
}
location ~* /web/static/ {
proxy_cache_valid 200 60m;
proxy_buffering on;
expires 864000;
proxy_pass http://myodoo;
}
location ~ ^/web/database/manager {
auth_basic "Restricted Access";
auth_basic_user_file /etc/nginx/.htpasswd;
proxy_pass http://myodoo;
# set headers
# ...
}
location ~ ^/web/database/selector {
auth_basic "Restricted Access";
auth_basic_user_file /etc/nginx/.htpasswd;
proxy_pass http://myodoo;
}
}
## http redirects to https ##
server {
listen 80;
server_name myodoo.my-hosting.com;
# Strict Transport Security
add_header Strict-Transport-Security max-age=2592000;
rewrite ^/.*$ https://$host$request_uri? permanent;
}
That's not an Odoo problem.