Anonymous access by IP address

I have a Confluence 5.1 installation which has all anonymous access turned off. It is internet-reachable through an F5 load balancer (really only doing SSL and not load balacing), and from all internet addresses, it needs to prompt for login. However, it would be of great utility if I could make some (or all, I'd be ok with all) sites readable by anonymous users who are inside of my company network.

Is there any way to accomplish this?

1 answer

I've created a similar setup using nginx as a reverse proxy. I'm using a separate URL for external (authenticated, read-write) and internal (auto-login, read-only) access with the following configuration:

# avoid redirects from the internal to the external domain
proxy_redirect https://external.site.com/ https://internal.site.com/;

# Authenticate a user with read-only permissions
proxy_set_header Authorization "Basic BASE64ENCODED";

# append &os_authType=basic to enable basic auth
set $args $args&os_authType=basic;

# restrict access
allow INTERNALIP1;
allow INTERNALIP2;
deny all;

# proxy to upstream server
proxy_pass http://127.0.0.1:8090;

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Feb 06, 2019 in Confluence

Try out the new editing experience

Hi team, I’m Avinoam, a product manager on Confluence Cloud, and today I’m really excited to let the Community know that all customers can now try out the new editing experience and see some of the ...

784 views 33 5
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you