[nginx] Enabling Advanced ACLs gives Error 500

[StephanTexxpro]

Important notices Before you add a new report, we ask you kindly to acknowledge the following:

• [X] I have read the contributing guide lines at https://github.com/opnsense/plugins/blob/master/CONTRIBUTING.md
• [X] I have searched the existing issues, open and closed, and I'm convinced that mine is new.
• [X] The title contains the plugin to which this issue belongs

Describe the bug Activating 'Advanced ACLs' to authenticate against an OPNsense Auth-Server gives a 500 error in the nginx log.

To Reproduce I'm trying to get Basic Auth with Advanced ACLs to work to authenticate nginx against an OpenLDAP-Server.

So I've setup under 'System: Access: Servers' a LDAP-Server connection. Tests ('System: Access: Tester') confirm that the LDAP-Auth works as expected on the OPNsense side.

In the nginx configuration, I've linked the LDAP-Server from the OPNsense backend to the respective http server, please see attached screenshot.

I've also set the config for the location ('/') to use the advanced ACLs, please also see attached second screenshot.

As soon as I try to access the site (from outside of the allowed IP range (IP ACL Oepf LAN), what is working as expected, that is also the reason for 'Satisfy Any'), nginx throws a 500 error. Same happens when I use 'Local Database', so I think it is not a specific LDAP related issue.

As long as I try to authenticate against the nginx local user database (which I've also tried for testing purpose), basic auth is working.

I've not found any additional log messages so far that could help to identify the problem.

Expected behavior Advanced ACLs should allow Basic Auth (Username & Password) against OPNsense Backend.

Screenshots Please see attached.

Relevant log files 74.208.xxx.xxx - - [28/Sep/2024:17:40:47 +0200] "GET / HTTP/1.0" 500 7775 "-" "Lynx/2.9.0 libwww-FM/2.14 SSL-MM/1.4.1 GNUTLS/3.8.3" "-"

Additional context

Environment OPNsense 24.7.4_1-amd64, Multi-WAN-Setup on Intel-based ESXi, os-nginx 1.34_2