new options: max_response_body_size, max_response_headers,

HoneyryderChuckrequested to merge
issue-383 into master

and max_response_header_value_size.

These are parse-time enforced thresholds, which when detected, will immediately raise before resources are further consumed, thereby avoiding resource exhaustion attacks.

Closes #383 (closed)

Merge request reports