Uploaded image for project: 'Red Hat Internal Developer Platform'
  1. Red Hat Internal Developer Platform
  2. RHIDP-2412

HTTP error code 431 when an user is member of many groups

Prepare for Y ReleasePrepare for Z ReleaseRemove QuarterXMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • 1.3
    • 1.1
    • Upstream
    • None
    • 3
    • False
    • Hide

      None

      Show
      None
    • False
    • RHIDP-1431 - Engineering Improvements
    • Hide
      Before this update, {product-short} API became unresponsive when a user was member of a high number of groups (more than 150) with aggregated relations.
      Therefore, the user might have failed to authenticate.
      Also, {product-short} might have shown an error when opening the user entity in the UI.

      With this update, {product-short} can handle a user member of a high number of groups (more than 150) with aggregated relations.
      Show
      Before this update, {product-short} API became unresponsive when a user was member of a high number of groups (more than 150) with aggregated relations. Therefore, the user might have failed to authenticate. Also, {product-short} might have shown an error when opening the user entity in the UI. With this update, {product-short} can handle a user member of a high number of groups (more than 150) with aggregated relations.
    • Bug Fix
    • Done
    • RHDH Core Team 3258, RHDH Core Team 3259

      Description of problem:

      Having an user with a high number of groups associated to it (150+) with Aggregated Relations will lead to responses 431 from the API.

      This impacts:

      • login: during login the response from the API may be 431 making that the client is not able to store the session cookie, breaking auth and making user have to login again;
      • user entities: An error will be shown in the UI when opening an user entity that is in this situation

      Check the upstream bug and the related RHDHBUGS-20 ticket.

      Prerequisites (if any, like setup, operators/versions):

      Steps to Reproduce

      1. Have an user entity member of multiple groups with Aggregated Relations;

      Actual results:

       Error during login and when opening an user entity on software catalog

      Expected results:

      no errors

      Reproducibility (Always/Intermittent/Only Once):

      always

      Build Details:

      Additional info (Such as Logs, Screenshots, etc):

      A workaround for this is increase the max header size:

       --max-http-header-size=32768

      Another possible workaround is as stated by Backstage maintainer: "the best fix is probably to significantly reduce the ownership refs count to ensure that the token doesn't grow too large"

            bgriggs@redhat.com Bethany Griggs
            rhn-support-wsiqueir William Siqueira
            RHIDP - Core Platform
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: