Proxy "apache like feature" RequestHeader unset authorization

Dobai-Pataky_BSSSSl · December 2, 2010, 9:28am

Hello,

trying to setup Basic Authantication on a ningx reverse ssl to http
proxy, where the backend doesn’t accept authentication.

now, nginx send the Authentication header to the upstream, and fails.

is there something like the apache feature “RequestHeader unset
authorization” ??

Tried
proxy_hide_header Authorization ;
but it still sends that Authorization header to backend.

Any idea how to do that?

location /someplace {
auth_basic “Restricted”;
auth_basic_user_file /etc/apache2/Mypasswd ;

       proxy_set_header X-Real-IP $remote_addr;
       proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
       proxy_set_header Host $http_host;
       proxy_set_header X-FORWARDED_PROTO https;
       proxy_redirect off;
 proxy_hide_header  Authorization ;
 proxy_pass http://someplace;

}

Regards,

–
Arjan Filius
mailto:[email protected]

Arjan_Filius · December 2, 2010, 9:38am

On Thu, Dec 02, 2010 at 09:27:00AM +0100, Arjan Filius wrote:

Tried
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
proxy_set_header X-FORWARDED_PROTO https;
proxy_redirect off;
proxy_hide_header Authorization ;

```
 proxy_hide_header  Authorization ;
```

```
 proxy_set_header   Authorization "";
```

 proxy_pass http://someplace;

}

–
Igor S.
http://sysoev.ru/en/

Arjan_Filius · December 2, 2010, 11:48am

Thanks! that worked

On Thu, 2 Dec 2010, Igor S. wrote:

authorization" ??
 proxy_pass http://someplace;
}

–
Arjan Filius
mailto:[email protected]