{% if "y" == auth_enabled %}
satisfy any;
allow 127.0.0.1;
allow ::1;
deny all;
auth_basic "Restricted Content";
auth_basic_user_file /etc/nginx/passwdfile;
{% endif %}