No password length constraint #3871

munteanstefan · 2024-05-30T08:34:02Z

Describe the issue

No password length constraint may lead blocking of the login functionality, and it cached a response:
{"message":"Request Entity Too Large","_links":{"self":{"href":"/ui/admin/stats"}},"_embedded":{"errors":[{"message":"Request Entity Too Large"}]}}

Preconditions:
kestra started up and at least one flow is saved in dashboard

Steps to reproduce

1 Activate basic authorization
2 insert a huge string in the email/password/confirm password field example : input a string of 2997 characters
3 Save the credentials and try to login with the correct email and password

Note that the response is cached, so opening a new tab will result in the same response, check screenshot

Environment

Kestra Version:
Operating System (OS/Docker/Kubernetes):
Java Version (if you don't run kestra in Docker):

frankzengjj · 2024-07-08T01:24:01Z

hi I would like to take this issue. The PR is here.

MilosPaunovic · 2024-07-22T06:31:07Z

Closed by #4261. Thanks @frankzengjj for the contribution! 🚀

munteanstefan added the bug Something isn't working label May 30, 2024

loicmathieu added this to the v0.18.0 milestone May 30, 2024

anna-geller removed this from the v0.18.0 milestone Jun 16, 2024

frankzengjj mentioned this issue Jul 8, 2024

fix(ui): enhanced email and password length constraint in basic authentication #4261

Merged

MilosPaunovic closed this as completed Jul 22, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

No password length constraint #3871

No password length constraint #3871

munteanstefan commented May 30, 2024

frankzengjj commented Jul 8, 2024

MilosPaunovic commented Jul 22, 2024

No password length constraint #3871

No password length constraint #3871

Comments

munteanstefan commented May 30, 2024

Describe the issue

Environment

frankzengjj commented Jul 8, 2024

MilosPaunovic commented Jul 22, 2024