nginx: fix basic auth for default vhost

CHANGELOG.md

@@ -16,6 +16,9 @@ The **patch** part changes incrmentally at each release.
 ### Changed
 * elasticsearch: use ES_TMPDIR variable for custom tmpdir, (from `/etc/default/elasticsearch` instead of changing `/etc/elesticsearch/jvm.options`).
 
+### Fixed
+* nginx: fix basic auth for default vhost
+
 ## [9.1.6] - 2018-02-02
 
 ### Added

nginx/templates/evolinux-default.conf.j2

@@ -23,10 +23,12 @@ server {
     root /var/www;
 
     # Auth.
+    satisfy any;
     include /etc/nginx/snippets/ipaddr_whitelist;
+    deny all;
+
     auth_basic "Reserved {{ ansible_fqdn }}";
     auth_basic_user_file /etc/nginx/snippets/private_htpasswd;
-    satisfy any;
 
     location / {
         index  index.html index.htm;