mirror/ infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2024-05-26 04:56:05 +02:00
Code Issues

keycloak: Bump buffer size to make room for response headers 

Keycloak is apparently sending over 4k worth of response headers under
some circumstances (maybe when the client sends a stale cookie?), which
causes Nginx to return a 502 error and log "upstream sent too big header
while reading response header from upstream". This is likely also
related to this upstream issue[1]. So bump the buffer to 8k.

[1] https://github.com/keycloak/keycloak/issues/16181
This commit is contained in:
Kristian Klausen 2023-01-05 20:56:57 +01:00
parent 993b24934a
commit bd0bae9f48
No known key found for this signature in database
GPG Key ID: E2BE346E410366C3
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
roles/keycloak/templates/nginx.d.conf.j2
View File

@ -56,6 +56,7 @@ server {
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://127.0.0.1:{{ keycloak_port }};
proxy_buffer_size 8k;
}
location = / {