mod_auth_openidc_state cookies accumulate on client until its receives 413 responses from httpd

Solution Verified - Updated -

Issue

  • We have a load balancer in front of multiple httpd servers using mod_auth_openidc. In this case, mod_auth_openidc_state cookies are accumulating on the client across requests until their cookie header becomes so big, httpd begins giving them 413 responses. This is not seen if just running with one httpd server up.

Environment

  • Red Hat Enterprise Linux (RHEL)
    • Apache httpd
      • mod_auth_openidc
  • Multiple loadbalanced servers

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content