starred/nginx-proxy-manager-NginxProxyManager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-04-25 01:15:51 +03:00
Code Issues 937 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #148] Proxy Host Custom Locations do not apply Access Lists #131

New issue
Closed
opened 2026-02-26 06:30:30 +03:00 by kerem · 32 comments
kerem commented 2026-02-26 06:30:30 +03:00
Owner
Copy link

Originally created by @sadowski on GitHub (May 22, 2019).
Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/148

I expect that if I apply an Access List to a Proxy Host, and then add a Custom Location to a proxy host, that when I go to that location for the first time, I am asked to supply authorization. This does not happen. The Custom Location is accessible without a username and password.

To reproduce:

  1. Create an Access List with a user and password
  2. Create a Proxy Host
  3. Add the Access List to the Proxy host
  4. Add a Custom Location
  5. Save
  6. Go to the custom location

Expected Result:
You are asked to supply username and password via basic auth.

Actual Result:
The page loads without authorization.

Originally created by @sadowski on GitHub (May 22, 2019). Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/148 I expect that if I apply an Access List to a Proxy Host, and then add a Custom Location to a proxy host, that when I go to that location for the first time, I am asked to supply authorization. This does not happen. The Custom Location is accessible without a username and password. To reproduce: 1. Create an Access List with a user and password 2. Create a Proxy Host 3. Add the Access List to the Proxy host 4. Add a Custom Location 5. Save 6. Go to the custom location Expected Result: You are asked to supply username and password via basic auth. Actual Result: The page loads without authorization.
kerem 2026-02-26 06:30:30 +03:00
  • closed this issue
  • added the
    bug
         label
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@jc21 commented on GitHub (May 22, 2019):

ahh yeah definitely an oversight

<!-- gh-comment-id:495014922 --> @jc21 commented on GitHub (May 22, 2019): ahh yeah definitely an oversight
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@emko commented on GitHub (Jul 3, 2019):

can we enable the auth in custom ngix configuration?

<!-- gh-comment-id:507921172 --> @emko commented on GitHub (Jul 3, 2019): can we enable the auth in custom ngix configuration?
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@meiskam commented on GitHub (Aug 3, 2019):

It'd be nice to have Access List box show up for each custom location, so I can have a custom location with a password and the main bit without one

<!-- gh-comment-id:517934138 --> @meiskam commented on GitHub (Aug 3, 2019): It'd be nice to have Access List box show up for each custom location, so I can have a custom location with a password and the main bit without one
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@jValdron commented on GitHub (Aug 6, 2019):

@meiskam, just add the following to your custom location "advanced options":

auth_basic            "Authorization required";
auth_basic_user_file  /data/access/{{ access_list_id }};

Taken from the proxy_host.conf template: https://github.com/jc21/nginx-proxy-manager/blob/master/src/backend/templates/proxy_host.conf

<!-- gh-comment-id:518688996 --> @jValdron commented on GitHub (Aug 6, 2019): @meiskam, just add the following to your custom location "advanced options": ``` auth_basic "Authorization required"; auth_basic_user_file /data/access/{{ access_list_id }}; ``` Taken from the _proxy_host.conf_ template: https://github.com/jc21/nginx-proxy-manager/blob/master/src/backend/templates/proxy_host.conf
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@jgearinger commented on GitHub (Dec 3, 2019):

still an issue... creates a pretty big security hole if you do not test specifically for this issue.

<!-- gh-comment-id:560973497 --> @jgearinger commented on GitHub (Dec 3, 2019): still an issue... creates a pretty big security hole if you do not test specifically for this issue.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@ahknight commented on GitHub (Feb 11, 2020):

I just ran into this as I wanted different levels of access for different apps on a domain. It’s also not easy to find out the ACL ID remotely (VPN, browser only) so I had to go guessing. It’d be nice to have a menu for each custom location to pick the ACL for it and have it just insert that blob.

<!-- gh-comment-id:584745044 --> @ahknight commented on GitHub (Feb 11, 2020): I just ran into this as I wanted different levels of access for different apps on a domain. It’s also not easy to find out the ACL ID remotely (VPN, browser only) so I had to go guessing. It’d be nice to have a menu for each custom location to pick the ACL for it and have it just insert that blob.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@wtf911 commented on GitHub (Apr 15, 2020):

Would also like to see this fixed please!

<!-- gh-comment-id:614328919 --> @wtf911 commented on GitHub (Apr 15, 2020): Would also like to see this fixed please!
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@clb92 commented on GitHub (May 15, 2020):

This is actually a pretty big issue for me, that locations don't inherit the host's access control.

I can't even get the solution above (adding auth_basic and auth_basic_user_file to the custom location) to work correctly:

If I use same access list on both host and location

My host subdomain.domain.com goes to one web server. It has access list 0 added to it through the dropdown list selector.

My custom location /subdir goes to another web server. It also has access list 0 added, by the two lines in the custom location config.

If I visit subdomain.domain.com/ and authenticate, that site displays fine, but if I then go to /subdir/, I always get 403 Forbidden.

If I visit subdomain.domain.com/subdir/ directly (without authenticating on subdomain.domain.com/ first), it will ask me to authenticate, but then I still get 403 Forbidden on, no matter what I do.

If I use different access lists on host and location it works

My host subdomain.domain.com still has access list 0 added to it.

But now, custom location /subdir has access list 1 added instead.

Now it works more as expected. Navigating to subdomain.domain.com asks for auth, and then going to subdomain.domain.com/subdir/ also asks for auth (but different credentials).

Navigating between the pages, it will keep asking for auth, since you can apparently only be authenticated with one set of credentials on one domain. This is expected.

The problem?

Studying the Docker container log, I see this line when I save the proxy settings through the GUI:

Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0

No idea if it's related.

So, is it just a bug in NPM that a host and a location (on that same host) can't use the same access list?

If anyone knows how to fix this, please let me know.

EDIT: For now, I can have the same access list on the host and location by actually making another access list (with same list of credentials in it) and using one list on the host, and the clone on the location. Works for now, but it's a terrible solution.

<!-- gh-comment-id:629385161 --> @clb92 commented on GitHub (May 15, 2020): This is actually a pretty big issue for me, that locations don't inherit the host's access control. I can't even get the solution above (adding auth_basic and auth_basic_user_file to the custom location) to work correctly: ## If I use same access list on both host and location My host ```subdomain.domain.com``` goes to one web server. It has ```access list 0``` added to it through the dropdown list selector. My custom location ```/subdir``` goes to another web server. It also has ```access list 0``` added, by the two lines in the custom location config. If I visit ```subdomain.domain.com/``` and authenticate, that site displays fine, but if I then go to ```/subdir/```, I always get 403 Forbidden. If I visit ```subdomain.domain.com/subdir/``` directly (without authenticating on ```subdomain.domain.com/``` first), it will ask me to authenticate, but then I still get 403 Forbidden on, no matter what I do. ## If I use different access lists on host and location it works My host ```subdomain.domain.com``` still has ```access list 0``` added to it. But now, custom location ```/subdir``` has ```access list 1``` added instead. Now it works more as expected. Navigating to ```subdomain.domain.com``` asks for auth, and then going to ```subdomain.domain.com/subdir/``` also asks for auth (but different credentials). Navigating between the pages, it will keep asking for auth, since you can apparently only be authenticated with one set of credentials on one domain. This is expected. ## The problem? Studying the Docker container log, I see this line when I save the proxy settings through the GUI: Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0 No idea if it's related. So, is it just a bug in NPM that a host and a location (on that same host) can't use the same access list? If anyone knows how to fix this, please let me know. **EDIT:** For now, I can have the same access list on the host and location by actually making another access list (with same list of credentials in it) and using one list on the host, and the clone on the location. Works for now, but it's a terrible solution.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@colonelmattyman commented on GitHub (Sep 3, 2020):

Websockets on Custom Domains are also broken because of this. I really think that this bug needs some urgent attention and a fast resolution. It's been open since 23 May 2019.

<!-- gh-comment-id:686252994 --> @colonelmattyman commented on GitHub (Sep 3, 2020): Websockets on Custom Domains are also broken because of this. I really think that this bug needs some urgent attention and a fast resolution. It's been open since 23 May 2019.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@Tezzlicious commented on GitHub (Sep 3, 2020):

Must agree. Issue needs an urgent fix or needs to be mentioned on the homepage. Thanks for the efforts.

<!-- gh-comment-id:686338215 --> @Tezzlicious commented on GitHub (Sep 3, 2020): Must agree. Issue needs an urgent fix or needs to be mentioned on the homepage. Thanks for the efforts.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@colonelmattyman commented on GitHub (Sep 10, 2020):

I ended up rolling back to V1.5.0 to fix it.

<!-- gh-comment-id:690531846 --> @colonelmattyman commented on GitHub (Sep 10, 2020): I ended up rolling back to V1.5.0 to fix it.
kerem commented 2026-02-26 06:30:32 +03:00
Author
Owner
Copy link

@clb92 commented on GitHub (Sep 10, 2020):

Random small problems like these have made me switch to Caddy. Sorry jc21!

<!-- gh-comment-id:690568683 --> @clb92 commented on GitHub (Sep 10, 2020): Random small problems like these have made me switch to Caddy. Sorry jc21!
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@colonelmattyman commented on GitHub (Sep 11, 2020):

Random small problems like these have made me switch to Caddy. Sorry jc21!

Right? Although I don't think a lack of authentication should be classed as a small problem.

<!-- gh-comment-id:690963690 --> @colonelmattyman commented on GitHub (Sep 11, 2020): > Random small problems like these have made me switch to Caddy. Sorry jc21! Right? Although I don't think a lack of authentication should be classed as a small problem.
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@ghost commented on GitHub (Feb 14, 2021):

How has this bug been open for almost 2 years?

<!-- gh-comment-id:778851682 --> @ghost commented on GitHub (Feb 14, 2021): How has this bug been open for almost 2 years?
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@NovaViper commented on GitHub (Feb 16, 2021):

Is there a fix for this??? I have a mission-critical sever that requires basic auth and it doesn't even run without custom locations; it seems to be broken for me entirely. Using v2.8.0

<!-- gh-comment-id:779646976 --> @NovaViper commented on GitHub (Feb 16, 2021): Is there a fix for this??? I have a mission-critical sever that requires basic auth and it doesn't even run **without** custom locations; it seems to be broken for me entirely. Using v2.8.0
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@fistwho commented on GitHub (Mar 5, 2021):

No Update so far? @jc21

<!-- gh-comment-id:791418031 --> @fistwho commented on GitHub (Mar 5, 2021): No Update so far? @jc21
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@Kooramah commented on GitHub (Mar 10, 2021):

I just ran into this issue myself, any updates on whether this will be fixed or not

<!-- gh-comment-id:794742597 --> @Kooramah commented on GitHub (Mar 10, 2021): I just ran into this issue myself, any updates on whether this will be fixed or not
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@failserver commented on GitHub (Mar 21, 2021):

Just ran into this same issue with trying to setup guacamole with a custom location. Access list are not applying to the proxy host.

<!-- gh-comment-id:803491844 --> @failserver commented on GitHub (Mar 21, 2021): Just ran into this same issue with trying to setup guacamole with a custom location. Access list are not applying to the proxy host.
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@markspivey commented on GitHub (Jun 3, 2021):

@meiskam, just add the following to your custom location "advanced options":

auth_basic            "Authorization required";
auth_basic_user_file  /data/access/{{ access_list_id }};

Taken from the proxy_host.conf template: https://github.com/jc21/nginx-proxy-manager/blob/master/src/backend/templates/proxy_host.conf

Lucky I found this thread because I initially thought this was an issue on my end. But just to reiterate that this solution above does solve the issue. As a working example, I added the following to advanced options for each of my custom locations (based on my personal preferences when setting up the access list):

auth_basic "Authorization required";
auth_basic_user_file /data/access/1;
proxy_set_header Authorization "";
deny all;
satisfy any;

auth_basic_user_file /data/access/1; would correspond to the respective file/access list you want to use.

<!-- gh-comment-id:854157268 --> @markspivey commented on GitHub (Jun 3, 2021): > @meiskam, just add the following to your custom location "advanced options": > > ``` > auth_basic "Authorization required"; > auth_basic_user_file /data/access/{{ access_list_id }}; > ``` > > Taken from the _proxy_host.conf_ template: https://github.com/jc21/nginx-proxy-manager/blob/master/src/backend/templates/proxy_host.conf Lucky I found this thread because I initially thought this was an issue on my end. But just to reiterate that this solution above does solve the issue. As a working example, I added the following to advanced options for each of my custom locations (based on my personal preferences when setting up the access list): ``` auth_basic "Authorization required"; auth_basic_user_file /data/access/1; proxy_set_header Authorization ""; deny all; satisfy any; ``` auth_basic_user_file /data/access/1; would correspond to the respective file/access list you want to use.
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@investlab commented on GitHub (Sep 13, 2021):

How can i enable basic auth sitewide and disabling it for subpages?
Anyone can access sub-location without Basic Authorization.

<!-- gh-comment-id:918096885 --> @investlab commented on GitHub (Sep 13, 2021): How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization.
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@TheClockTwister commented on GitHub (Oct 4, 2021):

As of v2.9.9, this seems to be an issue that wasn't completely eliminated in #1081...

If I create a clean instance of the image and use a basic proxy host with access list using Basic Auth, the file in /data/access/xxx is created, but not included in the proxy host's configuration. After manually adding the following block as suggested by @markspivey, everything works fine...

auth_basic "Authorization required";
auth_basic_user_file /data/access/xxx;
proxy_set_header Authorization "";
deny all;
satisfy any;

Thanks for this awesome project! I hope this bug will be fixed for good... :)

<!-- gh-comment-id:933187469 --> @TheClockTwister commented on GitHub (Oct 4, 2021): As of `v2.9.9`, this seems to be an issue that wasn't completely eliminated in #1081... If I create a clean instance of the image and use a basic proxy host with access list using Basic Auth, the file in `/data/access/xxx` is created, but not included in the proxy host's configuration. After manually adding the following block as suggested by @markspivey, everything works fine... ``` auth_basic "Authorization required"; auth_basic_user_file /data/access/xxx; proxy_set_header Authorization ""; deny all; satisfy any; ``` Thanks for this awesome project! I hope this bug will be fixed for good... :)
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@aw-jansen commented on GitHub (Jun 15, 2022):

How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization.
Did you find a solution for this? @wisoez

<!-- gh-comment-id:1156371893 --> @aw-jansen commented on GitHub (Jun 15, 2022): > How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization. Did you find a solution for this? @wisoez
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@ksarnelli commented on GitHub (Dec 9, 2022):

How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization.
Did you find a solution for this? @wisoez

@investlab @aw-jansen

Did either of you guys ever figure this out? Adding auth_basic "off"; to a location's custom config seems to put the host into Offline mode for me.

<!-- gh-comment-id:1344839850 --> @ksarnelli commented on GitHub (Dec 9, 2022): > > How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization. > > Did you find a solution for this? @wisoez @investlab @aw-jansen Did either of you guys ever figure this out? Adding `auth_basic "off";` to a location's custom config seems to put the host into Offline mode for me.
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@aw-jansen commented on GitHub (Dec 10, 2022):

Unfortunately it worked only when using the manual configuration to
configure the whole domain. Far from ideal however.

On Fri, Dec 9, 2022, 23:18 ksarnelli @.***> wrote:

How can i enable basic auth sitewide and disabling it for subpages? Anyone
can access sub-location without Basic Authorization.
Did you find a solution for this? @wisoez https://github.com/wisoez

@wisoez https://github.com/wisoez @aw-jansen
https://github.com/aw-jansen

Did either of you guys ever figure this out? Adding auth_basic "off"; to
a location's custom config seems to put the host into Offline mode for me.


Reply to this email directly, view it on GitHub
https://github.com/NginxProxyManager/nginx-proxy-manager/issues/148#issuecomment-1344839850,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/ABSPDGTPVO6Y3FRNY6SDPIDWMOV4LANCNFSM4HOYYQJQ
.
You are receiving this because you were mentioned.Message ID:
@.***>

<!-- gh-comment-id:1345259627 --> @aw-jansen commented on GitHub (Dec 10, 2022): Unfortunately it worked only when using the manual configuration to configure the whole domain. Far from ideal however. On Fri, Dec 9, 2022, 23:18 ksarnelli ***@***.***> wrote: > How can i enable basic auth sitewide and disabling it for subpages? Anyone > can access sub-location without Basic Authorization. > Did you find a solution for this? @wisoez <https://github.com/wisoez> > > @wisoez <https://github.com/wisoez> @aw-jansen > <https://github.com/aw-jansen> > > Did either of you guys ever figure this out? Adding auth_basic "off"; to > a location's custom config seems to put the host into Offline mode for me. > > — > Reply to this email directly, view it on GitHub > <https://github.com/NginxProxyManager/nginx-proxy-manager/issues/148#issuecomment-1344839850>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/ABSPDGTPVO6Y3FRNY6SDPIDWMOV4LANCNFSM4HOYYQJQ> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@ksarnelli commented on GitHub (Dec 10, 2022):

Unfortunately it worked only when using the manual configuration to configure the whole domain. Far from ideal however.

On Fri, Dec 9, 2022, 23:18 ksarnelli @.> wrote: How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization. Did you find a solution for this? @wisoez https://github.com/wisoez @wisoez https://github.com/wisoez @aw-jansen https://github.com/aw-jansen Did either of you guys ever figure this out? Adding auth_basic "off"; to a location's custom config seems to put the host into Offline mode for me. — Reply to this email directly, view it on GitHub <#148 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/ABSPDGTPVO6Y3FRNY6SDPIDWMOV4LANCNFSM4HOYYQJQ . You are receiving this because you were mentioned.Message ID: @.>

Bummer - that was my suspicion. Thanks!

<!-- gh-comment-id:1345361621 --> @ksarnelli commented on GitHub (Dec 10, 2022): > Unfortunately it worked only when using the manual configuration to configure the whole domain. Far from ideal however. > […](#) > On Fri, Dec 9, 2022, 23:18 ksarnelli ***@***.***> wrote: How can i enable basic auth sitewide and disabling it for subpages? Anyone can access sub-location without Basic Authorization. Did you find a solution for this? @wisoez <https://github.com/wisoez> @wisoez <https://github.com/wisoez> @aw-jansen <https://github.com/aw-jansen> Did either of you guys ever figure this out? Adding auth_basic "off"; to a location's custom config seems to put the host into Offline mode for me. — Reply to this email directly, view it on GitHub <[#148 (comment)](https://github.com/NginxProxyManager/nginx-proxy-manager/issues/148#issuecomment-1344839850)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ABSPDGTPVO6Y3FRNY6SDPIDWMOV4LANCNFSM4HOYYQJQ> . You are receiving this because you were mentioned.Message ID: ***@***.***> Bummer - that was my suspicion. Thanks!
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@alneven commented on GitHub (May 14, 2023):

Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0

any idea why I have this in the logs? (I'm on docker, with version v2.10.3)

<!-- gh-comment-id:1546962972 --> @alneven commented on GitHub (May 14, 2023): ``` Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0 ``` any idea why I have this in the logs? (I'm on docker, with version v2.10.3)
kerem commented 2026-02-26 06:30:33 +03:00
Author
Owner
Copy link

@natechoiniere commented on GitHub (Sep 5, 2023):

Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0

any idea why I have this in the logs? (I'm on docker, with version v2.10.3)

I'm also seeing this.

<!-- gh-comment-id:1706428367 --> @natechoiniere commented on GitHub (Sep 5, 2023): > ``` > Duplicate relation "access_list" in a relation expression. You should use "a.[b, c]" instead of "[a.b, a.c]". This will cause an error in objection 2.0 > ``` > > any idea why I have this in the logs? (I'm on docker, with version v2.10.3) I'm also seeing this.
kerem commented 2026-02-26 06:30:34 +03:00
Author
Owner
Copy link

@kpleines commented on GitHub (Dec 14, 2023):

Same here.
V2.10.4

<!-- gh-comment-id:1855737705 --> @kpleines commented on GitHub (Dec 14, 2023): Same here. V2.10.4
kerem commented 2026-02-26 06:30:34 +03:00
Author
Owner
Copy link

@vtmocanu commented on GitHub (Dec 17, 2023):

Unfortunately it worked only when using the manual configuration to configure the whole domain. Far from ideal however.

can you please share an example of the manual config for the whole domain?

<!-- gh-comment-id:1859077109 --> @vtmocanu commented on GitHub (Dec 17, 2023): > Unfortunately it worked only when using the manual configuration to configure the whole domain. Far from ideal however. can you please share an example of the manual config for the whole domain?
kerem commented 2026-02-26 06:30:34 +03:00
Author
Owner
Copy link

@W1BTR commented on GitHub (Jun 30, 2025):

Same issue here! Rather annoying

<!-- gh-comment-id:3021143333 --> @W1BTR commented on GitHub (Jun 30, 2025): Same issue here! Rather annoying
kerem commented 2026-02-26 06:30:34 +03:00
Author
Owner
Copy link

@W1BTR commented on GitHub (Jun 30, 2025):

Adding

auth_basic            "Authorization required";
auth_basic_user_file  /data/access/{{ access_list_id }};

Causes it to fail and show that host as "offline" for me, unfortunately.

I also tried having that chunk of code, plus disabling the access list from the main gui page, which now does prompt for a login but says "unauthorized" even after signing in.

<!-- gh-comment-id:3021150143 --> @W1BTR commented on GitHub (Jun 30, 2025): Adding ``` auth_basic "Authorization required"; auth_basic_user_file /data/access/{{ access_list_id }}; ``` Causes it to fail and show that host as "offline" for me, unfortunately. I also tried having that chunk of code, plus disabling the access list from the main gui page, which now does prompt for a login but says "unauthorized" even after signing in.
kerem commented 2026-02-26 06:30:34 +03:00
Author
Owner
Copy link

@SmileMachine commented on GitHub (Oct 23, 2025):

Adding

auth_basic            "Authorization required";
auth_basic_user_file  /data/access/{{ access_list_id }};

Causes it to fail and show that host as "offline" for me, unfortunately.

I also tried having that chunk of code, plus disabling the access list from the main gui page, which now does prompt for a login but says "unauthorized" even after signing in.

Add the above to "Advanced", but not "Custom Locations"

After that, set the "Access List" to be "Publicly Accessible"

Also, make sure the access_list_id is correct.

<!-- gh-comment-id:3439750295 --> @SmileMachine commented on GitHub (Oct 23, 2025): > Adding > > ``` > auth_basic "Authorization required"; > auth_basic_user_file /data/access/{{ access_list_id }}; > ``` > > Causes it to fail and show that host as "offline" for me, unfortunately. > > I also tried having that chunk of code, plus disabling the access list from the main gui page, which now does prompt for a login but says "unauthorized" even after signing in. Add the above to "Advanced", but not "Custom Locations" After that, set the "Access List" to be "Publicly Accessible" Also, make sure the access_list_id is correct.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
dependabot/npm_and_yarn/backend/liquidjs-10.25.7
dependabot/npm_and_yarn/frontend/prod-minor-updates-2a16bf3987
dependabot/npm_and_yarn/frontend/dev-patch-updates-754666cf41
dependabot/npm_and_yarn/backend/basic-ftp-5.3.0
dependabot/npm_and_yarn/test/follow-redirects-1.16.0
dependabot/npm_and_yarn/test/axios-1.15.0
dependabot/npm_and_yarn/frontend/lodash-4.18.1
dependabot/npm_and_yarn/backend/lodash-4.18.1
dependabot/npm_and_yarn/test/lodash-4.18.1
dependabot/npm_and_yarn/frontend/vite-7.3.2
dependabot/npm_and_yarn/backend/prod-minor-updates-5ec19a7f21
dependabot/npm_and_yarn/frontend/lodash-es-4.18.1
dependabot/npm_and_yarn/frontend/happy-dom-20.8.9
dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0
dependabot/npm_and_yarn/frontend/picomatch-4.0.4
dependabot/npm_and_yarn/backend/picomatch-2.3.2
dependabot/npm_and_yarn/frontend/yaml-1.10.3
dependabot/npm_and_yarn/test/flatted-3.4.2
dependabot/npm_and_yarn/test/tar-7.5.11
dependabot/npm_and_yarn/frontend/immutable-5.1.5
master
dependabot/npm_and_yarn/test/glob-10.5.0
dependabot/npm_and_yarn/frontend/mdast-util-to-hast-13.2.1
dependabot/npm_and_yarn/test/form-data-4.0.4
v3-abandoned
bump-freedns
openidc
ssl-passthrough-hosts
static-content
v2.14.0
v2.13.7
v2.13.6
v2.13.5
v2.13.4
v2.13.3
v2.13.2
v2.13.1
v2.13.0
v2.12.6
v2.12.5
v2.12.4
v2.12.3
v2.12.2
v2.12.1
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.4
v2.10.3
v2.10.2
v2.10.1
v2.10.0
v2.9.22
v2.9.21
v2.9.20
v2.9.19
v2.9.18
v2.9.17
v2.9.16
v2.9.15
v2.9.14
v2.9.13
v2.9.12
v2.9.11
v2.9.10
v2.9.9
v2.9.8
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.0
v2.0.0
1.1.2
1.1.1
1.0.1
Labels
Clear labels   
awaiting feedback

   
bug

   
cannot reproduce

   
dns provider request

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
invalid

   
need more info

   
no certbot plugin available

   
product-support

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
troll

   
upstream issue

   
v2

   
v2

   
v2

   
v3

   
wontfix
No labels
awaiting feedback
bug
cannot reproduce
dns provider request
duplicate
enhancement
enhancement
enhancement
good first issue
help wanted
invalid
need more info
no certbot plugin available
product-support
pull-request
question
stale
troll
upstream issue
v2
v2
v2
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-proxy-manager-NginxProxyManager#131
No description provided.