Airlock Microgateway performs various size checks on requests with a default configuration to repel denial of service (DoS) attacks. The CR Limits can be used to configure these limit checks on the root level. All limits are calculated in bytes.
- Limit checks are available for:
- Number and size of parameters.
- Request properties like body size or path length.
- Various aspects of JSON Payload.
- A global header size check (can be configured in the Limiting request headers length).
Configured limits can also apply to OpenAPI and GraphQL requests. See also section Limit-based block and attack types in logs and metrics in this article.
This CR needs to be referenced in the CR ContentSecurity.