Nginx Rule to Block Specific URL

Question

Need some help in writing a rule to block the following request

The url in question is:

www.somesite.com/catalogsearch/result/?q=downloader

I have tried the following, but this does not work

location ^~ catalogsearch/result/?q=downloader {
    deny all;
}

I "think" the because the ? question mark is included is treating the url as a query string??

Regards

Valdeir Psr · Accepted Answer · 2018-02-05T03:00:56.383

7

If you want to block access through the parameter q=downloader only at URL www.somesite.com/catalogsearch/result/ :

error_page 418 = @blockAccess;

location /catalogsearch/result {
        if ($args ~* "q=downloader") {
                return 418;
        }
}

location @blockAccess {
        deny all;
}

Add before location /

If you want to block the q=downloader parameter of all URL's, just put the code below before location:

error_page 418 = @blockAccess;

if ($args ~* "q=downloader") {
    return 418;
}

location @blockAccess {
    deny all;
}

If you want to block the www.somesite.com/catalogsearch/result/ :

error_page 418 = @blockAccess;

# Add before "location /"
location /catalogsearch/result {
        return 418;
}

location @blockAccess {
        deny all;
}

edited Feb 05 '18 at 03:00

answered Feb 05 '18 at 01:57

Valdeir Psr

702
1
7
10

Hi Valdeir, your suggested answers provided a solution Thank you – user1517598 Feb 06 '18 at 03:04
Thanks for saving the whole day – Bhargav Patel Jul 18 '18 at 12:40
i want rule, if someone enter "/api/123" it should return 403, everything except "/api/" location shoud return 403 – user3782114 Nov 22 '22 at 05:44
@user3782114 `location = /api/123` – Valdeir Psr Nov 23 '22 at 08:02

Nginx Rule to Block Specific URL

1 Answers1

Linked