Skip to content
Snippets Groups Projects
Verified Commit bd0bae9f authored by Kristian Klausen's avatar Kristian Klausen :tada:
Browse files

keycloak: Bump buffer size to make room for response headers 

Keycloak is apparently sending over 4k worth of response headers under
some circumstances (maybe when the client sends a stale cookie?), which
causes Nginx to return a 502 error and log "upstream sent too big header
while reading response header from upstream". This is likely also
related to this upstream issue[1]. So bump the buffer to 8k.

[1] https://github.com/keycloak/keycloak/issues/16181
parent 993b2493
No related branches found
No related tags found
No related merge requests found
Pipeline #46603 passed
Stage: test
Hide whitespace changes
Inline Side-by-side
roles/keycloak/templates/nginx.d.conf.j2
+ 1
0
View file @ bd0bae9f
......@@ -56,6 +56,7 @@ server {
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_pass http://127.0.0.1:{{ keycloak_port }};
proxy_buffer_size 8k;
}
location = / {
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment