adding exceptions for common monitoring endpoints

thomasjungblut · thomasjungblut · commit 913a0842a0e2 · 2018-03-23T21:31:47.000+01:00
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # Docker image of Nginx Proxy with Basic Auth
 
-[![Docker Repository on Quay](https://quay.io/repository/dtan4/nginx-basic-auth-proxy/status "Docker Repository on Quay")](https://quay.io/repository/dtan4/nginx-basic-auth-proxy)
+[![Docker Repository on Quay](https://quay.io/repository/thomasjungblut/nginx-basic-auth-proxy/status "Docker Repository on Quay")](https://quay.io/repository/thomasjungblut/nginx-basic-auth-proxy)
 
 Simple HTTP Proxy with Basic Authentication
 
@@ -10,6 +10,9 @@ User ---------------> | nginx-basic-auth-proxy | ---> | HTTP Server |
                       +------------------------+      +-------------+
 ```
 
+This project is a fork of [dtan4's nginx basic auth proxy](https://github.com/dtan4/nginx-basic-auth-proxy). 
+I only added a couple of common monitoring endpoints (/healthz, /ping, /status, /metrics and /version) to be accessible without basic auth.
+
 ## Run
 
 ```bash
@@ -23,7 +26,7 @@ $ docker run \
     -e PROXY_PASS=https://www.google.com \
     -e SERVER_NAME=proxy.dtan4.net \
     -e PORT=80 \
-    quay.io/dtan4/nginx-basic-auth-proxy
+    quay.io/thomasjungblut/nginx-basic-auth-proxy
 ```
 
 Access to http://localhost:8080 , then browser asks you username and password.
@@ -70,7 +73,7 @@ Reading: 0 Writing: 1 Waiting: 0
 |`PROXY_READ_TIMEOUT`|Value for `proxy_read_timeout` directive|`60s`|
 |`WORKER_PROCESSES`|Value for `worker_processes` directive|`auto`|
 
-## Author
+## Original Author
 
 Daisuke Fujita ([@dtan4](https://github.com/dtan4))
 
diff --git a/files/nginx.conf.tmpl b/files/nginx.conf.tmpl
@@ -28,6 +28,28 @@ http {
       proxy_set_header X-Forwarded-Host $host;
       # Do not pass Authorization header to destination
       proxy_set_header Authorization "";
+    }
+	
+	# we turn a couple of common locations off harcoded
+	
+	location /healthz {
+        auth_basic off;
+    }
+	
+	location /ping {
+        auth_basic off;
+    }
+	
+	location /metrics {
+        auth_basic off;
+    }
+	
+	location /status {
+        auth_basic off;
+    }
+	
+	location /version {
+        auth_basic off;
     }
   }
 
