NGINX Access Control Module: Variable-Based Rules
by Danila Vershinin, February 25, 2026
The NGINX access control module extends native allow/deny directives beyond IP addresses to any NGINX variable. Build flexible access policies using headers, query parameters, geo data, and custom maps — all evaluated at the access phase without resorting to if-statements.
Read More...NGINX PAM Authentication: System Users and LDAP Integration
by Danila Vershinin, February 20, 2026
Configure NGINX PAM authentication to authenticate users against Linux system accounts, LDAP directories, and Active Directory. Includes installation, configuration examples, caching for performance, and security best practices.
Read More...NGINX PTA Module: Time-Limited Token Authentication
by Danila Vershinin, February 16, 2026
Learn how to protect NGINX content with time-limited encrypted tokens using the PTA (Period of Time Authentication) module. Prevent hotlinking and enable secure, expiring download links with AES-128 encryption.
Read More...Phantom Token NGINX Module: Secure API Gateway Auth
by Danila Vershinin, February 10, 2026
Learn how to implement the Phantom Token pattern in NGINX to secure your APIs. This module exchanges opaque access tokens for JWTs at the gateway level, protecting sensitive claims from client applications while working with any RFC 7662-compliant OAuth provider.
Read More...NGINX Digest Authentication: More Secure Than Basic Auth
by Danila Vershinin, February 7, 2026
Learn how to configure NGINX digest authentication using the ngx_http_auth_digest module. This guide covers installation, htdigest password files, brute-force protection, shared memory tuning, and when to choose digest auth over basic auth for securing your NGINX locations.
Read More...NGINX LDAP Authentication: Complete Module Setup Guide
by Danila Vershinin, February 5, 2026
Learn how to set up NGINX LDAP authentication using the nginx-auth-ldap dynamic module. This guide covers installation from pre-built packages, Active Directory integration, LDAPS encryption, multi-server failover, authentication caching, and production security hardening.
Read More...NGINX TOTP Authentication: Add 2FA to Your Server
by Danila Vershinin, February 4, 2026
Learn how to add time-based one-time password (TOTP) two-factor authentication to NGINX protected locations. This guide covers installation, configuration, and security best practices for the ngx_http_auth_totp module.
Read More...NGINX JWT Authentication Module: Secure Your APIs
by Danila Vershinin, February 2, 2026
Learn how to implement native JWT authentication directly in NGINX using the nginx-module-jwt. This lightweight module validates JSON Web Tokens at the edge, reducing backend load and simplifying your API security architecture.
Read More...NGINX Basic Auth with htpasswd: Complete Configuration Guide
by Danila Vershinin, January 26, 2026
Learn how to configure NGINX basic authentication using htpasswd. This complete guide covers password file creation, hash algorithms, WordPress protection, staging site security, SSL integration, and troubleshooting.
Read More...Recommended Web Hosting
