Commit b3c74b47 by Clinton Blackburn

Merge pull request #3041 from edx/clintonb/api-no-basic-auth

Disabled basic authentication for the /api paths of ecommerce and programs
parents 3513b8f3 135b9a6a
...@@ -69,6 +69,11 @@ server { ...@@ -69,6 +69,11 @@ server {
try_files $uri @proxy_to_app; try_files $uri @proxy_to_app;
} }
# The API should be secured with OAuth 2.0 or or JWT.
location /api {
try_files $uri @proxy_to_app;
}
{% include "robots.j2" %} {% include "robots.j2" %}
location @proxy_to_app { location @proxy_to_app {
......
...@@ -85,6 +85,11 @@ server { ...@@ -85,6 +85,11 @@ server {
try_files $uri @proxy_to_app; try_files $uri @proxy_to_app;
} }
# The API should be secured with OAuth 2.0 or or JWT.
location /api {
try_files $uri @proxy_to_app;
}
{% include "robots.j2" %} {% include "robots.j2" %}
location @proxy_to_app { location @proxy_to_app {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment