I have a Confluence 5.1 installation which has all anonymous access turned off. It is internet-reachable through an F5 load balancer (really only doing SSL and not load balacing), and from all internet addresses, it needs to prompt for login. However, it would be of great utility if I could make some (or all, I'd be ok with all) sites readable by anonymous users who are inside of my company network.
Is there any way to accomplish this?
I've created a similar setup using nginx as a reverse proxy. I'm using a separate URL for external (authenticated, read-write) and internal (auto-login, read-only) access with the following configuration:
# avoid redirects from the internal to the external domain proxy_redirect https://external.site.com/ https://internal.site.com/; # Authenticate a user with read-only permissions proxy_set_header Authorization "Basic BASE64ENCODED"; # append &os_authType=basic to enable basic auth set $args $args&os_authType=basic; # restrict access allow INTERNALIP1; allow INTERNALIP2; deny all; # proxy to upstream server proxy_pass http://127.0.0.1:8090;
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.