Htpasswd for Opencart directory and Nginx only (Solved)

Nameless · July 27, 2022, 4:46pm

Hi! I want to protect the admin panel login for cms opencart (located in /admin/).
I created .htpasswd in the /admin/ directory and made these settings for the template:

    location /admin/ {
    try_files $uri $uri/ =404;
    auth_basic "Password-protected Area";
    auth_basic_user_file %docroot%/admin/.htpasswd;
    }

But when I go to the domain/admin link and log in, I just download the file config.php and I can’t log in to the opencart admin panel. I only use nginx without apache. What did I do wrong?)

Raphael · July 27, 2022, 4:55pm

%docroot% doesnt work in .htaccess, you need to write that one out.

eris · July 27, 2022, 5:00pm

Should be replaced by /home/user/web/domain/public.html

Nameless · July 27, 2022, 6:53pm

I saw similar settings for Apache on the forum, but I only use Nginx and specifically noted this. I tried to specify the full path, the result was the same.

Nameless · July 29, 2022, 3:42pm

The working solution is:

location ^~ /admin {
    location ~ .(php)$ {
        try_files $uri =404;
        fastcgi_pass %backend_lsnr%;
        include fastcgi_params;
        fastcgi_param SCRIPT_FILENAME $request_filename;
    }

   auth_basic "Password-protected Area";
   auth_basic_user_file %docroot%/admin/.htpasswd;
 }

system · August 28, 2022, 3:43pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.