Azure Web Application Firewall (WAF) not diferentiating file uploads from normal posts and returning 413
The Azure WAF can be configured to check the maximum size of a request like this:
Anyway, besides having this configuration, any time we upload a file the WAF considers it as a "not file upload operation" and returns 413 "Request entity too large" if the file exceeds 128 Kb.
We are sending the POST request with what we think are the right headers:
Content-disposition: attachment; filename="testImage.jpg"
Content-Length: 2456088
Content-Type: image/jpeg
But it does not make a difference. Any idea why the WAF does not see this is a file upload and applies the Max file upload check instead of the Max request body size limit?
After several conversations with Microsoft we found that the WAF considers only file attachments if they are sent using multipart/form-data
If you send it this way the WAF will understand it is a file and thus will apply the limits configured for files instead than for bodies.
There is no other way to send files supported by the WAF for now.
- Does HTML5 allow drag-drop upload of folders or a folder tree?
- Getting response from PrimeVue FileUpload after uploading file
- javascript - get the filename and extension from input type=file
- multiple image upload issue while editing images in codeigniter php
- Laravel HTTP client attach multiple files
- multiple files upload using same input name in django
- Cannot write uploaded file to disk
- Why do I get this error: Postman Error: Malformed part header?
- Webpack compile error: TypeError: __WEBPACK_IMPORTED_MODULE_1__ … is not a function
- File upload using FastAPI returns error 422
- Upload dynamic multiple files in Nest JS
- Rename product image as product title in wordpress
- How to upload file with python requests?
- Google Firebase Storage Rules prevent sending file upload from Next.JS endpoint
- How to reset ReactJS file input
- Upload files and JSON in ASP.NET Core Web API
- 'dragleave' of parent element fires when dragging over children elements
- Can I save an image in 'public' folder using react?
- upload file to express multi can't receive file in the request
- How can I send a File over a REST API?
- Good security measures for client image upload
- Symfony 2.8 - display certain entity value in form field widget template
- file upload: check if valid image
- Laravel $request->file() returns null
- Angular 16 and Nestjs: Upload files it's impossible (With Postman works perfect)
- Multiple image upload with CodeIgniter
- Error Uncaught at uploadFiles (Code:7) when trying to upload files
- Upload File from Website to Google Drive works for text file but not binary
- File Upload, Submit Button and doPost issue
- Upload files to a minimal API endpoint in .NET 8