From f92ab60b39d4a9c1c556781edae090772cc5ad32 Mon Sep 17 00:00:00 2001
From: "ljf (zamentur)" <zamentur@users.noreply.github.com>
Date: Mon, 28 Oct 2019 00:52:03 +0100
Subject: [PATCH] [fix] Remove SSO DEBUG

---
 access.lua | 1 -
 1 file changed, 1 deletion(-)

diff --git a/access.lua b/access.lua
index 87f1a68..56f9806 100644
--- a/access.lua
+++ b/access.lua
@@ -30,7 +30,6 @@ ngx.header["X-SSO-WAT"] = "You've just been SSOed"
 
 -- Quick fix for CVE-2019-11043 about php-fpm and nginx
 local loweruri = string.lower(ngx.var.uri)
-ngx.header["X-SSO-DEBUG"] = loweruri
 if string.match(loweruri, "\n") or string.match(loweruri, "\r") then
     return ngx.exit(ngx.HTTP_FORBIDDEN)
 end