NGINX TeslaGov JWT Module: Claim Forwarding
by Danila Vershinin, March 28, 2026
Learn how to authenticate API requests and forward JWT claims to backend services using the NGINX TeslaGov JWT module. Covers installation, HMAC and RSA key configuration, cookie-based auth for SPAs, login redirects, and claim extraction to request, response, and NGINX variables.
Read More...NGINX Stream Lua Module: Programmable TCP/UDP Processing
by Danila Vershinin, March 27, 2026
Learn how to use the NGINX stream lua module to add programmable logic to TCP and UDP traffic. This guide covers installation, configuration, cosockets, shared dictionaries, rate limiting, protocol detection, and custom load balancing with Lua in the NGINX stream subsystem.
Read More...NGINX Kerberos Authentication: Enterprise SSO with SPNEGO
by Danila Vershinin, March 23, 2026
Learn how to configure NGINX Kerberos authentication with the SPNEGO module for transparent Single Sign-On in Active Directory environments. Complete guide covering installation, keytab setup, principal authorization, credential delegation, and security best practices.
Read More...NGINX Shibboleth Module: SSO Authentication Guide
by Danila Vershinin, March 22, 2026
Learn how to integrate NGINX with Shibboleth SSO using the nginx-http-shibboleth module. This guide covers installation, configuration of the FastCGI authorizer, secure attribute passing to backend applications, and critical anti-spoofing measures for production deployments.
Read More...NGINX Secure Token Module: CDN Token Authentication
by Danila Vershinin, March 21, 2026
Learn how to protect HLS, DASH, and HDS streaming content with the NGINX secure token module. Generate CDN-compatible tokens for Akamai, CloudFront, and other providers directly at the edge, with configuration examples and security best practices.
Read More...NGINX Request Cookies Filter Module
by Danila Vershinin, March 19, 2026
Learn how to filter, strip, rewrite, and add cookies in NGINX request headers before they reach your upstream servers. The request cookies filter module gives you fine-grained control over incoming cookies for privacy compliance, security hardening, and cache optimization.
Read More...NGINX Redis Rate Limit Module: Distributed Throttling
by Danila Vershinin,
Learn how to implement distributed rate limiting in NGINX using the Redis Rate Limit module. This module uses the Generic Cell Rate Algorithm (GCRA) with Redis as a backend, providing precise request throttling across multiple NGINX instances for API protection, login abuse prevention, and DDoS mitigation.
Read More...NGINX Lua Module: Programmable Web Serving Guide
by Danila Vershinin, March 15, 2026
Learn how to extend NGINX with the Lua module for custom authentication, rate limiting, API gateways, and more. Includes installation on RHEL, CentOS, Ubuntu, and practical examples with 110+ ready-to-install Lua libraries from the GetPageSpeed repository.
Read More...Gixy IDE Plugins: NGINX Security in VS Code and JetBrains
by Danila Vershinin, March 14, 2026
NGINX misconfigurations are among the most common sources of web application vulnerabilities. Server-Side Request Forgery (SSRF), HTTP response splitting, path traversal via alias, and header injection — these issues often slip through code review and only surface in production, sometimes after an attacker has already exploited them. Gixy IDE plugins bring automated detection of these […]
Read More...NGINX CDN Loop Detection: Prevent Request Loops
by Danila Vershinin,
Learn how to prevent infinite request loops in NGINX CDN and reverse proxy configurations using the loop detect module. This module implements RFC 8586’s CDN-Loop header to track request hops and automatically block runaway loops before they consume server resources.
Read More...Recommended Web Hosting
