user864993
Reputation:
Handling form too large Exception without applying the org.mortbay.jetty.Request.maxFormContentSize param
As per the solutions mentioned in this SO thread , we need to set the maxFormContentSize parameter. But such a solution can lead to DoS through hash table vulnerability .
Is there any way other than limiting the post request, may be by breaking it into multiple requests ? I need to use this on a web client with no javascript support.
Upvotes: 1
Views: 645
Answers (1)
jesse mcconnell
Reputation: 7182
https://github.com/eclipse/jetty.project/commit/085c79d7d6cfbccc02821ffdb64968593df3e0bf
Jetty added a mechanism to handle this concern quite some time ago by calling setMaxFormKeys on the ContextHandler. Above is the commit adding that support in and the corresponding test case. Exists in jetty 7.6.x and 8.1.x as well as in jetty 9 milestone releases.
Upvotes: 1
Related Questions
- Can not post form with many (over 256) values
- How to set the equivalent of Jetty's "maxFormContentSize" in Spring Boot?
- Form too Large Exception
- How to change Jetty settings through SparkJava? / Form too Large Exception / org.eclipse.jetty.server.Request.maxFormContentSize
- is there a size limit to individual fields in HTTP POST?
- Solr POST Request returns 400. Java. When size of request is too large
- How can I abort a request if the XML file is too large?
- setting maxFormContentSize in jetty/solr
- Jetty - Form too large Error
- Limit upload size in embedded Jetty