{% if "y" == auth_enabled %}
    satisfy any;
    allow 127.0.0.1;
    allow ::1;
    deny all;
    auth_basic "Restricted Content";
    auth_basic_user_file /etc/nginx/passwdfile;
{% endif %}