Untitled

http {

    server {

        location / {
            # let everyone in my organization
            auth_request /auth-proxy;

            location = /auth-proxy {
                # nginx auth config
                proxy_set_header X-Ldap-Template "(sAMAccountName=%(username)s)";


            }
        }


        location /subfolder {
            auth_request /auth-proxy-subfolder;

            location = /auth-proxy-subfolder {
                # nginx auth2 config for certain group
                proxy_set_header X-Ldap-Template "(&(sAMAccountName=%(username)s)(memberOf=CN=Group,OU=Users,OU=example,OU=com)(objectClass=user))";
            }
    }
}

localhost - - [19/Jul/2019 11:06:44] using username/password from authorization header
localhost - - [19/Jul/2019 11:06:44] "GET /auth-proxy-subfolder HTTP/1.0" 401 -
localhost - - [19/Jul/2019 11:06:44] using username/password from authorization header
localhost - - [19/Jul/2019 11:06:44] "GET /auth-proxy HTTP/1.0" 401 -
localhost - auser [19/Jul/2019 11:06:50] Auth OK for user "auser"
localhost - auser [19/Jul/2019 11:06:50] "GET /auth-proxy HTTP/1.0" 200 -