1 Answer
- Newest
- Most votes
- Most comments
1
The SizeConstraint operator is the right thing to use in this case - it looks at the value for the Content-Length header. The limitation on 8192 bytes is only in place if you want WAF to inspect the contents of the request.
Relevant content
- Accepted Answerasked 9 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- Can I use ACM to issue private certificates when the AWS Private CA validity is less than 13 months?AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 2 years ago
Thanks for your @Brettski. I am looking to implement this in Terraform for AWS WAP but there is very little documentation around it. I found a skeleton like this https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/waf_size_constraint_set. Do you know how to implement a request filter condition in Terraform for API Gateway for SizeConstraint to reject request of length over 800KB?
I'm sorry, I don't know much about Terraform.