How to protect direct ip access in caddy

I've a subdomain: api.example.com

And I've a caddyfile that use a reverse proxy to redirect to my api backend:

api.example.com {
  basicauth {
    user my_hashed_password
  }
  reverse_proxy localhost:8000
}

As you can see I protect the access of this api with a simple basicauth. It work as expected. But I can still access the api without authentication if use my_ip:8000 (for example 1.1.1.1:8000). How can I also apply the basic auth for the ip direct access ?

I've tried something like:

:8000 {
  basicauth {
    user my_hashed_password
  }
  handle api.example.com {
    reverse_proxy localhost:8000
  }
}

But caddy is angry because I use a reverse_proxy on the same port as the one declared above.

Solution

If port 8000 is not configured in Caddy, you cannot add basicauth in Caddy. You need to configure it in the application that is listening on port 8000.

How to render static files within Gin router?
C# UdpCLient.Receive doesn't receive any data on different machine
It is necessary to send the JWT token from the browser page to the server
Go file server doesn't serve folder
ProviderSettings class not found it says Cannot resolve symbol ProviderSettings
AWS IVS whip&whep on server
Why is my newly pushed Fly.io Rails7.0.8 app not finding my image & js assets?
Python pip raising NewConnectionError while installing libraries
AWS elastic beanstalk 100.0 % of the requests are erroring with HTTP 4xx
Node.js can't read .env
Laravel server, upload to public_html rather than upload in project folder
My request for data from server using the XMLHttpRequest, keeps returning undefined
Can you customize Ktor 401 - Unauthorized Response?
How to set up raspberry pi DNS with static IP from internet provider
start() is Deprecated in GRPC services
Start a PHP server on Mac OS X
Error: listen EADDRINUSE: address already in use :::5000 BUT dotnet server does let me run API in port 5000
How can I get a production server alert log in my Slack channel?, so that if there is a problem I will be notified as soon as possible
How to send large videos to Gemini AI API 1.5 Pro for inference?
C# - Add Item to Listbox on Form from a Class
Is it possible to create 2 or more BayeuxServer instances in the same server
ASP.NET Core 2 Web API - 502 Bad Gate Way(Centos 7) - NGINX
Unable to upload images to server in Flutter. returning URL as url/filename.octet-stream"
Laravel inertia @vite hot reload on production issue
How to get route parameters from Nuxt 3 server
Handle 100K request per second
Unable to configure HTTPS endpoint. No server certificate was specified - Web API C# on Linux
Docker: Error response from daemon: failed to create endpoint priceless_noether on network bridge:
How to connect to remote database through remote server to local device?
navigator.credentials is null on local server