From 7630fb18274061f2196d1baef6d5f866a1e281ec Mon Sep 17 00:00:00 2001
From: Dimitri Harding <vaughnharding@hotmail.com>
Date: Thu, 28 Jul 2022 17:03:49 -0500
Subject: [PATCH] fix: check if relative path is specified in require_uri and
 return 403

---
 nginx/default.conf | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/nginx/default.conf b/nginx/default.conf
index c110e3ef..9d010353 100644
--- a/nginx/default.conf
+++ b/nginx/default.conf
@@ -1,6 +1,10 @@
 server {
   listen 8080;
 
+  if ($request_uri ~ "\.\./"){
+    return 403;
+  }
+
   location / {
     root /usr/share/nginx/html;
     index index.html index.htm;