diff options
author | Robert Schütz <nix@dotlambda.de> | 2024-02-05 00:31:37 -0800 |
---|---|---|
committer | Robert Schütz <nix@dotlambda.de> | 2024-02-05 00:33:33 -0800 |
commit | 1dd5f2b1f97e308137769a537b2ca445b0cb57e2 (patch) | |
tree | 8ab02a6cd4f0839148c3c0a6ad6be1aedb8ae554 /nixos/modules/services/web-servers | |
parent | e92b6015881907e698782c77641aa49298330223 (diff) |
nixos/nginx: turn auth_request off for ACME challenge
This is e.g. necessary when using tailscale-nginx-auth.
Diffstat (limited to 'nixos/modules/services/web-servers')
-rw-r--r-- | nixos/modules/services/web-servers/nginx/default.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/nixos/modules/services/web-servers/nginx/default.nix b/nixos/modules/services/web-servers/nginx/default.nix index 6799de6c7d96c..93b1a3fdfaddd 100644 --- a/nixos/modules/services/web-servers/nginx/default.nix +++ b/nixos/modules/services/web-servers/nginx/default.nix @@ -361,10 +361,12 @@ let ${optionalString (vhost.acmeFallbackHost != null) "try_files $uri @acme-fallback;"} ${optionalString (vhost.acmeRoot != null) "root ${vhost.acmeRoot};"} auth_basic off; + auth_request off; } ${optionalString (vhost.acmeFallbackHost != null) '' location @acme-fallback { auth_basic off; + auth_request off; proxy_pass http://${vhost.acmeFallbackHost}; } ''} |