使用Nginx代理Kibana并设置身份验证

1、在ES-sever上安装nginx

wget http://nginx.org/download/nginx-1.8.1.tar.gz 
tar xvf nginx-1.8.1.tar.gz
yum install -y gcc gcc-c++ automake pcre pcre-devel zlib zlib-devel openssl openssl-devel
useradd nginx
cd nginx-1.8.1/

./configure --prefix=/usr/local/nginx --sbin-path=/usr/local/nginx/sbin/nginx --conf-path=/usr/local/nginx/conf/nginx.conf --error-log-path=/var/log/nginx/error.log  --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx/nginx.pid --lock-path=/var/lock/nginx.lock --user=nginx --group=nginx --with-http_ssl_module --with-http_stub_status_module --with-http_gzip_static_module --http-client-body-temp-path=/var/tmp/nginx/client/ --http-proxy-temp-path=/var/tmp/nginx/proxy/ --http-fastcgi-temp-path=/var/tmp/nginx/fcgi/ --http-uwsgi-temp-path=/var/tmp/nginx/uwsgi --http-scgi-temp-path=/var/tmp/nginx/scgi --with-pcre 
make
make install 

mkdir -pv /var/tmp/nginx/client/
/usr/local/nginx/sbin/nginx
tail -f /var/log/nginx/access.log

2、添加一个单独的nginx配置文件，设置转发

mkdir -pv /usr/local/nginx/conf/conf.d/
vim /usr/local/nginx/conf/conf.d/kibana.conf

server {
	listen 80;
	server_name 192.168.135.136;
	auth_basic "Restricted Access";
	auth_basic_user_file /usr/local/nginx/conf/htpasswd.users;
	location / {
		proxy_pass  http://192.168.135.136:5601;
		proxy_http_version 1.1;
		proxy_set_header  Upgrade $http_upgrade;
		proxy_set_header  Connection 'upgrade';
		proxy_set_header  Host $host;
		proxy_cache_bypass $http_upgrade;
	}
}

3、修改nginx主配置文件导入配置

vim /usr/local/nginx/conf/nginx.conf 

http {
    include /usr/local/nginx/conf/conf.d/*.conf;
}

4、配置登录验证

yum install -y httpd-tools
htpasswd -bc /usr/local/nginx/conf/htpasswd.users admin admin
cat /usr/local/nginx/conf/htpasswd.users

5、重启nginx

/usr/local/nginx/sbin/nginx -t
/usr/local/nginx/sbin/nginx -s reload

6、用浏览器直接访问80端口

http://192.168.135.136/