SuperSpyTX/Sonatype-Stupidity.md

## fix-stupidus.conf
header_filter_by_lua_block { ngx.header.content_length = nil }
body_filter_by_lua_block {
        local data = ngx.arg[1]
        local regex = [[Ip":"(?:[0-9]{1,3}\.){3}[0-9]{1,3}"]]
        ngx.arg[1] = ngx.re.sub(ngx.arg[1], regex, "Ip\":\"[filtered]\"", "i")
}

## Sonatype-Stupidity.md

      
    Raw
  

              Sonatype-Stupidity.md
            
          
    Fixes a IP exposure problem.
https://issues.sonatype.org/browse/NEXUS-20956
Use the above code in the server or location block of choice and it should hide the IP address.
Side effect of this at the moment is that all responses will be chunked and the header Transfer-Encoding chunked will be set.
Requires OpenResty or nginx lua module + dependencies.
	header_filter_by_lua_block { ngx.header.content_length = nil }
	body_filter_by_lua_block {
	local data = ngx.arg[1]
	local regex = [[Ip":"(?:[0-9]{1,3}\.){3}[0-9]{1,3}"]]
	ngx.arg[1] = ngx.re.sub(ngx.arg[1], regex, "Ip\":\"[filtered]\"", "i")
	}
No results found