Spring

Daniel Mikusa posted Nov 18, 2019 11:37 AM

OK, somewhere in the request path your request is hitting a limit on a server regarding header/cookie size. You need to look at the request path to your app and see where this is happening. The typical request path looks like this: Browser -> Your Platform LBs -> Gorouter -> SCG -> Resource Server. Check each hop and confirm which one is causing the problem, then increase the maximum allowed header/cookie size so that it allows your request to pass through.

Kyle Abu posted Nov 19, 2019 09:04 PM

Thank you for answering but after I downgrade from spring boot 2.2.1 to 2.1.10 and from spring cloud Hoxiton to Greenwich it works with no issue​

Daniel Mikusa posted Nov 20, 2019 11:20 AM

Well, you didn't check to see where exactly is generating the 400 response so this is just speculation, but if you change the Spring Boot version and the problem goes away, it could be coming from your Spring Boot app. Spring Boot embeds a server, defaults to Tomcat, into your application. This server will put limits on the header/cookie size like all servers do to prevent DoS attacks.

 

For Tomcat, it is:

maxHttpHeaderSize   The maximum size of the request and response HTTP header, specified in bytes. If not specified, this attribute is set to 8192 (8 KB).

https://tomcat.apache.org/tomcat-9.0-doc/config/http.html#Standard_Implementation

 

You could try bumping that up. With Spring Boot, the property to set is `server.max-http-header-size` (also defaults to 8K). That should apply to all embedded servers (Tomcat, Jetty, etc..).