Limiting API request size

Didn't find any [config param](https://github.com/cloudflare/cfssl/blob/master/cli/config.go) nor hard-coded values to limit CFSSL's API request header and body sizes.

Consider configurable (better probably) or hard-coded limits for both elements (to prevent clients from accidentally or maliciously sending a large request and wasting server resources) using i.e.

- [MaxHeaderBytes](https://pkg.go.dev/net/http) for headers,
- `Content-Length` and [MaxBytesReader](https://pkg.go.dev/net/http#MaxBytesReader) for body.



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Limiting API request size #1328

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Limiting API request size #1328

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions