diff options
author | Marcello Stanisci <stanisci.m@gmail.com> | 2018-12-03 12:40:04 +0100 |
---|---|---|
committer | Marcello Stanisci <stanisci.m@gmail.com> | 2018-12-03 12:40:04 +0100 |
commit | c8b016c446f8267c36807d56f7fa5a6bf6bbab71 (patch) | |
tree | 7c3228aa30c6fedf1214de4a6c383c2c522d8f9f | |
parent | 7df9079537eb53c589a9298315af88e08a183249 (diff) | |
download | deployment-c8b016c446f8267c36807d56f7fa5a6bf6bbab71.tar.gz deployment-c8b016c446f8267c36807d56f7fa5a6bf6bbab71.tar.bz2 deployment-c8b016c446f8267c36807d56f7fa5a6bf6bbab71.zip |
BB Web auth.
Trying Nginx authentication feature.
-rw-r--r-- | etc/nginx/sites-enabled/buildbot-ssl.site | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/etc/nginx/sites-enabled/buildbot-ssl.site b/etc/nginx/sites-enabled/buildbot-ssl.site index ba998bb..99696df 100644 --- a/etc/nginx/sites-enabled/buildbot-ssl.site +++ b/etc/nginx/sites-enabled/buildbot-ssl.site @@ -11,6 +11,21 @@ server { server_name bb.taler.net; include conf.d/talerssl; + # location /api/v2/builders maps to the builder's + # "view", so there is no need to restrict the access there. + + # This location is _usually_ targeted by POSTs in order + # to trigger builds. + location /api/v2/builds { + auth_basic "Core devs restricted area"; + auth_basic_user_file "/etc/nginx/htpasswd"; + proxy_pass http://127.0.0.1:8010; + proxy_redirect off; + proxy_set_header Host $host; + proxy_set_header Upgrade $http_upgrade; + proxy_set_header Connection "upgrade"; + } + location / { proxy_pass http://127.0.0.1:8010; proxy_redirect off; |