Can the maximum string length for process parameters be increased?

Avatar

Avatar

bajwaya

Avatar

bajwaya

bajwaya

22-11-2019

When we invoke our AEM processes via REST endpoints - i.e. processes created in Adobe Workbench, we are getting an error if the string exceeds 2000 characters:

Invalid input. The maximum length of 2000 characters was exceeded.
at org.owasp.esapi.reference.validation.StringValidationRule.checkLength(StringValidationRule.java:214) [esapi-2.1.0.1.jar:2.1.0.1]​

at org.owasp.esapi.reference.validation.StringValidationRule.checkLength(StringValidationRule.java:229) [esapi-2.1.0.1.jar:2.1.0.1]​

at org.owasp.esapi.reference.validation.StringValidationRule.getValid(StringValidationRule.java:281) [esapi-2.1.0.1.jar:2.1.0.1]​

at org.owasp.esapi.reference.DefaultValidator.getValidInput(DefaultValidator.java:214) [esapi-2.1.0.1.jar:2.1.0.1]​

at com.adobe.util.XSSValidatorHelper.validateXSSInput(XSSValidatorHelper.java:29) [adobe-utilities.jar:6.3.0.20190826.1.337248]​

at com.adobe.idp.dsc.provider.impl.rest.RestServlet.getSafeParameterMap(RestServlet.java:1358) [adobe-rest-provider.jar:6.3.0.20190826.1.337248]​

at com.adobe.idp.dsc.provider.impl.rest.RestServlet.handleInputParams(RestServlet.java:577) [adobe-rest-provider.jar:6.3.0.20190826.1.337248]​

at com.adobe.idp.dsc.provider.impl.rest.RestServlet.doPost(RestServlet.java:284) [adobe-rest-provider.jar:6.3.0.20190826.1.337248]​

Is there a way to increase the maximum allowed length?

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar

WASIL

Employee

Avatar

WASIL

Employee

WASIL
Employee

25-11-2019

Then check following :

Thanks

Wasil

Answers (3)

Answers (3)

Avatar

Avatar

bajwaya

Avatar

bajwaya

bajwaya

25-11-2019

It is being sent in the body:

at com.adobe.idp.dsc.provider.impl.rest.RestServlet.doPost(RestServlet.java:284) [adobe-rest-provider.jar:6.3.0.20190826.1.337248]

Thank you,

Yasir

Avatar

Avatar

WASIL

Employee

Avatar

WASIL

Employee

WASIL
Employee

25-11-2019

It is not recommended to send whole data in the query parameters rather in the body. Please try the same by sending the data in body.

Thanks,

Wasil

Avatar

Avatar

jbrar

Employee

Avatar

jbrar

Employee

jbrar
Employee

23-11-2019

For Json results, it will be the "max json results" at the default get servlet[1]

[1] http://<host>:<port>/system/console/configMgr/org.apache.sling.servlets.get.DefaultGetServlet