Add configuration items to limit secret and request sizes.

Two size attributes limit the size of secrets and requests in barbican. This CR explicitly adds those to the Barbican configuration file. Change-Id: I22d68cc8c9e96cf719a550b26333a845e895f178
2014-05-02 13:25:21 -05:00 · 2014-05-02 13:25:21 -05:00 · 12c44e86f6
commit 12c44e86f6
parent 584b561c17
1 changed files with 2 additions and 1 deletions
--- a/etc/barbican/barbican-api.conf
+++ b/etc/barbican/barbican-api.conf
@ -28,7 +28,8 @@ backlog = 4096
 #tcp_keepidle = 600

 # Maximum allowed http request size against the barbican-api
-max_allowed_secret_in_bytes = 15000
+max_allowed_secret_in_bytes = 10000
+max_allowed_request_size_in_bytes = 1000000

 # SQLAlchemy connection string for the reference implementation
 # registry server. Any valid SQLAlchemy connection string is fine.