The above indicates that the header that is being received by Artifactory from the SAML provider contains more than 1800 characters which should prevent the user from logging in to the system.
The fix involves editing the $JFROG_HOME/artifactory/app/misc/tomcat/server.xml file. Add the following value to both Artifactory and Access connectors: maxHttpHeaderSize=”16384” The default value for this parameter in Tomcat 8.x is 8192.
For your reference, this is how the modified file would look like
Note: Artifactory service needs to be restarted for the change to be effective.
The fix involves editing the $JFROG_HOME/artifactory/app/misc/tomcat/server.xml file. Add the following value to both Artifactory and Access connectors: maxHttpHeaderSize=”16384” The default value for this parameter in Tomcat 8.x is 8192.
For your reference, this is how the modified file would look like
<Server port="8015" shutdown="SHUTDOWN">
<Service name="Catalina">
<Connector port="8081" maxHttpHeaderSize="16384" sendReasonPhrase="true" relaxedPathChars='[]' relaxedQueryChars='[]' maxThreads="200"/>
<Connector port="8091" address="localhost" maxThreads="5" acceptCount="5"/>
<!-- Must be at least the value of artifactory.access.client.max.connections -->
<Connector port="8040" maxHttpHeaderSize="16384" sendReasonPhrase="true" maxThreads="50"/>
<Engine name="Catalina" defaultHost="localhost">
<Host name="localhost" workDir="${JF_PRODUCT_HOME}/var/work/artifactory/tomcat" appBase="webapps" startStopThreads="2"/>
</Engine>
</Service>
</Server> Note: Artifactory service needs to be restarted for the change to be effective.