API tools faq
paste
Guest User

Untitled

a guest
Jun 6th, 2014
497
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.80 KB | None | 0 0
raw download clone embed print report
  1. upstream elasticsearch {
  2. server 127.0.0.1:9200;
  3. }
  4.  
  5. server {
  6. listen *:80;
  7. server_name <ip_add_of_localhost>;
  8. root /var/www/kibana;
  9. access_log /var/log/nginx/access.log;
  10. error_log /var/log/nginx/error.log;
  11.  
  12. satisfy any;
  13. allow 192.168.0.0/16;
  14. allow <ip_add_of_localhost>;
  15. allow 10.0.0.0/8;
  16. allow 127.0.0.1;
  17. deny all;
  18.  
  19. location / {
  20. root /var/www/kibana;
  21. index index.html;
  22. auth_basic "Restricted";
  23. auth_basic_user_file /var/www/htpasswd;
  24.  
  25. }
  26.  
  27. # Keep elasticsearch behind a proxy with http auth
  28. location /es/ {
  29. rewrite ^/es/_aliases$ /_aliases break;
  30. rewrite ^/es/_nodes$ /_nodes break;
  31. rewrite ^/es/(.*/_mapping)$ /$1 break;
  32. return 403;
  33.  
  34. limit_except GET {
  35. deny all;
  36. }
  37.  
  38. auth_basic "Restricted";
  39. auth_basic_user_file /var/www/htpasswd;
  40.  
  41. proxy_pass http://elasticsearch;
  42.  
  43. proxy_redirect off;
  44.  
  45. proxy_set_header X-Real-IP $remote_addr;
  46. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  47. proxy_set_header Host $http_host;
  48.  
  49. # For CORS Ajax
  50. proxy_pass_header Access-Control-Allow-Origin;
  51. proxy_pass_header Access-Control-Allow-Methods;
  52. proxy_hide_header Access-Control-Allow-Headers;
  53. add_header Access-Control-Allow-Headers 'X-Requested-With, Content-Type';
  54. add_header Access-Control-Allow-Credentials true;
  55. }
  56.  
  57.  
  58. location ~ ^/es/(.*/_search)$ {
  59. rewrite ^/es/(.*/_search)$ /$1 break;
  60.  
  61. limit_except POST {
  62. deny all;
  63. }
  64.  
  65. proxy_pass http://elasticsearch;
  66.  
  67. proxy_redirect off;
  68.  
  69. proxy_set_header X-Real-IP $remote_addr;
  70. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  71. proxy_set_header Host $http_host;
  72.  
  73. # For CORS Ajax
  74. proxy_pass_header Access-Control-Allow-Origin;
  75. proxy_pass_header Access-Control-Allow-Methods;
  76. proxy_hide_header Access-Control-Allow-Headers;
  77. add_header Access-Control-Allow-Headers 'X-Requested-With, Content-Type';
  78. add_header Access-Control-Allow-Credentials true;
  79.  
  80. auth_basic "Restricted";
  81. auth_basic_user_file /var/www/htpasswd;
  82.  
  83. }
  84.  
  85. location /es/kibana-int/ {
  86. rewrite ^/es/(kibana-int/.*)$ /$1 break;
  87. proxy_pass http://127.0.0.1:9200;
  88.  
  89. auth_basic "Restricted";
  90. auth_basic_user_file /var/www/htpasswd;
  91.  
  92. proxy_redirect off;
  93.  
  94. proxy_set_header X-Real-IP $remote_addr;
  95. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  96. proxy_set_header Host $http_host;
  97.  
  98. # For CORS Ajax
  99. proxy_pass_header Access-Control-Allow-Origin;
  100. proxy_pass_header Access-Control-Allow-Methods;
  101. proxy_hide_header Access-Control-Allow-Headers;
  102. add_header Access-Control-Allow-Headers 'X-Requested-With, Content-Type';
  103. add_header Access-Control-Allow-Credentials true;
  104.  
  105. }
  106.  
  107. }
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!