Increase max limit on url_variables token length (!107169) · Merge requests · GitLab.org / GitLab

Luke Duncalfe requested to merge 385919-raise-url_variables-length-validation-limit into master Dec 16, 2022

What does this MR do and why?

This change sets the new validation limit of a WebHook masked URL variable value to 2048 characters.

This number is intended to support OAuth2 tokens being used as a masked URL variable.

There is no set maximum length for what an OAuth token could be, but the new limit is based on the bytesize of a Google API token, which is an example of a large OAuth2 token size. Tokens are likely to be ASCII.

The current limit of 100 is too short to support Drone CI Oauth2 tokens, and currently, users are unable to save Drone CI integrations.

#385919 (comment 1211528329)

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Related to #385919 (closed)

Increase max limit on url_variables token length

What does this MR do and why?

MR acceptance checklist

Merge request reports