Significant content length could cause excessive network traffic intensity and resource consumption, and can lead to denial of service (DoS).
1var express = require('express')
2var app = express()
3var bodyParser = require('body-parser')
4
5function limitOnRequestContentLengthNoncompliant() {
6 // Noncompliant: limit on request content length is > 2mb in a requests.
7 app.use(bodyParser.urlencoded({ extended: false, limit: "4mb" }))
8}
1var express = require('express')
2var app = express()
3var bodyParser = require('body-parser')
4
5function limitOnRequestContentLengthCompliant() {
6 // Compliant: limit on request content length is <= 2mb requests.
7 app.use(bodyParser.urlencoded({ extended: false, limit: "1mb" }))
8}