Hi, I am working on a requirement wherein I have to restrict the incoming requests to Lamba function behind the AWS API Gateway to be less than 800 KB. This needs to implemented preferrably at the Gateway level and need to implement it in Terraform as Infrastructure-as-Code. I am thinking that AWS [WAF SizeConstraint](https://docs.aws.amazon.com/waf/latest/APIReference/API_SizeConstraintStatement.html) might be the answer but looks like it will only inspect up to 4096 bytes and also not sure how to implement a filter that rejects incoming requests greater than 800 KB body size in Terraform. Thanks in Advance

Need to limit AWS API gateway incoming request body size to less than 800 KB

Hi, I am working on a requirement wherein I have to restrict the incoming requests to Lamba function behind the AWS API Gateway to be less than 800 KB. This needs to implemented preferrably at the Gateway level and need to implement it in Terraform as Infrastructure-as-Code. I am thinking that AWS WAF SizeConstraint might be the answer but looks like it will only inspect up to 4096 bytes and also not sure how to implement a filter that rejects incoming requests greater than 800 KB body size in Terraform.

Thanks in Advance

Temas

Sin servidor Seguridad, identidad y cumplimiento Web y móvil front-end Redes y entrega de contenido

Etiquetas

Sin servidor AWS WAF Amazon API Gateway

Idioma

English

rePost-User-6243945

preguntada hace un año478 visualizaciones

1 Respuesta

Más nuevo
Más votos
Más comentarios

Respuesta aceptada

The SizeConstraint operator is the right thing to use in this case - it looks at the value for the Content-Length header. The limitation on 8192 bytes is only in place if you want WAF to inspect the contents of the request.

EXPERTO

Brettski-AWS

respondido hace un año

rePost-User-6243945
hace un año
Thanks for your @Brettski. I am looking to implement this in Terraform for AWS WAP but there is very little documentation around it. I found a skeleton like this https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/waf_size_constraint_set. Do you know how to implement a request filter condition in Terraform for API Gateway for SizeConstraint to reject request of length over 800KB?
Brettski-AWS EXPERTO
hace un año
I'm sorry, I don't know much about Terraform.

Contenido relevante

¿Cómo soluciono el error «Lambda does not have permission to access the ECR image...» (Lambda no tiene permiso para acceder a la imagen de ECR...) de una función de Lambda con una imagen de contenedor?
OFICIAL DE AWSActualizada hace un año
¿Cómo puedo solucionar el error «You must be logged in to the server (Unauthorized)» cuando me conecto al servidor API de Amazon EKS?
OFICIAL DE AWSActualizada hace un año
¿Cómo puedo solucionar el error «The final policy size is bigger than the limit» de Lambda?
OFICIAL DE AWSActualizada hace 2 años
¿Cómo puedo evitar el error «Unable to validate the following destination configurations» con las notificaciones de eventos de Lambda en CloudFormation?
OFICIAL DE AWSActualizada hace 3 años