{% if "y" == auth_enabled %} satisfy any; allow 127.0.0.1; allow ::1; deny all; auth_basic "Restricted Content"; auth_basic_user_file /etc/nginx/passwdfile; {% endif %}