亲爱的NGINX(和Piwik)专家,
我努力用basic_auth锁定完整的Piwik安装(当然,在HTTPS下)。但是,我当然需要允许公众访问Piwiks选择退出功能,该功能可以在https://piwik.example.com/index.php?module=CoreAdminHome&action=optOut&language=de下使用,并且通常作为iframe嵌入到其他页面中(例如隐私声明)。
我认为有效的配置(即它应该根据文档,IMHO工作)如下所示。但是,在访问选择退出页面的深层链接时,我仍然会收到auth-basic密码提示。
server {
listen 443 ssl;
listen [::]:443 ssl;
ssl_certificate fullchain.pem;
ssl_certificate_key privkey.pem;
root /var/www/piwik;
index index.php index.html;
server_name piwik.example.com;
location ^~ /index.php?module=CoreAdminHome&action=optOut&language=de {
auth_basic off;
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/run/php/php7.0-fpm.sock;
}
location / {
auth_basic "Restricted access!";
auth_basic_user_file htpasswd/credentials;
try_files $uri $uri/ =404;
}
location ~ \.php$ {
auth_basic "Restricted access!";
auth_basic_user_file htpasswd/credentials;
include snippets/fastcgi-php.conf;
fastcgi_pass unix:/run/php/php7.0-fpm.sock;
}
}