Location /register not working in NGINX

Xperez · July 23, 2020, 4:46pm

Hi
Im trying to play a little bit with NGINX to allow only to one specific IP be able to access the register feature like this:

location /register {
allow XXX.XXX.XXX.XXX;
deny all;
}

But its not working:

Any other IP that is not allowed gets a 403 Forbidden error → this is expected
The allowed IP gets a 404 Not Found error → this is not expected
Logs shows this:
/etc/nginx/html/register" failed (2: No such file or directory)

Any ideas about why this is happening?

Thanks a lot in advance.

Agrendalath · July 27, 2020, 11:59am

Hey @Xperez!

Your NGINX rule captures the incoming traffic to the /register location, but it doesn’t redirect it anywhere. To be able to access the /register page, you should add something like try_files $uri @proxy_to_lms_app; at the end to have your request passed forward.

While this is going to work, you can consider additional layer of blocking the registration page, because this one can be bypassed like this:

Enter /login page.
Click “Create an Account.”.

If you want to disable this, you can set ALLOW_PUBLIC_ACCOUNT_CREATION feature to false to disable the mentioned link and Register button, so you will be able to access the /register page only via its URL.

Topic		Replies	Views
The bottons from register and login in Studio redirect to another ip Site Operations Help	3	363	November 20, 2020
Why when I adding location in nginx it gives 403 Forbidden Site Operators online , how-to	6	1216	February 17, 2021
Problem when access to server Site Operations Help how-to	2	531	April 12, 2021
Adding one new field to the registration page Development	3	1081	April 3, 2020
CORS Issue with `frontend-app-learning` accessing LMS API endpoint Development api	4	1888	February 24, 2022

Location /register not working in NGINX

Related Topics