diff options
Diffstat (limited to 'nixpkgs/pkgs/servers/nginx-sso/rune.patch')
-rw-r--r-- | nixpkgs/pkgs/servers/nginx-sso/rune.patch | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/nixpkgs/pkgs/servers/nginx-sso/rune.patch b/nixpkgs/pkgs/servers/nginx-sso/rune.patch new file mode 100644 index 000000000000..5e5480787dec --- /dev/null +++ b/nixpkgs/pkgs/servers/nginx-sso/rune.patch @@ -0,0 +1,13 @@ +diff --git i/main.go w/main.go +index bf80f3d..632f7d6 100644 +--- i/main.go ++++ w/main.go +@@ -174,7 +174,7 @@ func handleAuthRequest(res http.ResponseWriter, r *http.Request) { + case plugins.ErrNoValidUserFound: + // No valid user found, check whether special anonymous "user" has access + // Username is set to 0x0 character to prevent accidental whitelist-match +- if mainCfg.ACL.HasAccess(string(0x0), nil, r) { ++ if mainCfg.ACL.HasAccess(string(rune(0x0)), nil, r) { + mainCfg.AuditLog.Log(auditEventValidate, r, map[string]string{"result": "anonymous access granted"}) // #nosec G104 - This is only logging + res.WriteHeader(http.StatusOK) + return |