From b531d01fe5f84f88bff7b260d7bf658d1f8fe8a5 Mon Sep 17 00:00:00 2001
From: Dmitry Stolyarov <dmitry.stolyarov@flant.com>
Date: Mon, 2 Sep 2019 14:58:55 +0300
Subject: [PATCH] Fix security issue in regex

---
 run-proxy | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/run-proxy b/run-proxy
index 7d77838..322896c 100755
--- a/run-proxy
+++ b/run-proxy
@@ -190,7 +190,7 @@ http {
     ssl_verify_client on;
 
     location ${LOCATION} {
-      if (\$ssl_client_s_dn_cn !~ "${USER}") {
+      if (\$ssl_client_s_dn_cn !~ "^${USER}$") {
         return 403;
       }
       proxy_http_version 1.1;