Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Avoid HTTP 400 Bad Request by configuring request header limits #3940

Open
tachylatus opened this issue Nov 7, 2024 · 2 comments
Open

Avoid HTTP 400 Bad Request by configuring request header limits #3940

tachylatus opened this issue Nov 7, 2024 · 2 comments
Milestone

Comments

@tachylatus
Copy link

Users sometimes experience HTTP 400 due to request headers exceeding server limit, typically when the cookie grows beyond 8190 bytes.

Specifically when using OIDC, it has been suggested, in issue #492, to adjust OIDCStateMaxNumberOfCookies.

Instead, I propose we make it easier to configure and increase server limits for both apache and per-user nginx (pun).

Currently, you can do the following to increase the limits from 8k to 32k:

  • In ood_portal.yaml, add the following entry to the ssl: list: - 'LimitRequestFieldSize 32766'
  • Create an app configuration e.g. /var/lib/ondemand-nginx/config/apps/sys/nginx_server_settings.conf containing the line large_client_header_buffers 4 32k;, which will then be auto-included in the server context of generated pun configs.
@osc-bot osc-bot added this to the Backlog milestone Nov 7, 2024
@tachylatus
Copy link
Author

@johrstrom
Copy link
Contributor

Yea I think we could add a config for LimitRequestFieldSize.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants