File upload (multipart) with Picketlink fails with sizes over 20k (using Apache Commons FileUpload) --------------------------------------------------------------------------------------------------- Key: WFLY-12849 URL: https://issues.jboss.org/browse/WFLY-12849 Project: WildFly Issue Type: Bug Components: Security Reporter: Bartosz Spyrko Assignee: Bartosz Spyrko Priority: Critical Labels: downstream_dependency This is a followup to JBEAP-17829 - WFLY-12705 - File upload fails with IllegalStateException when PicketLink SSO is enabled The patch resolved a portion of the file upload issues, but uploads over a certain size fail (appears to be ~20k but I don't have a precise number). This issue occurs only with picketlink security and doing file uploads The reproducer shows that the request class differs between successful uploads and unsuccessful uploads: Successful calls use SPFormAuthenticationRequestWrapper: [cdolphy@styx jboss-eap-7.2]$ 10:52:41,761 INFO [stdout] (default task-2) Class of Request - org.picketlink.identity.federation.bindings.wildfly.sp.SPFormAuthenticationRequestWrapper 10:52:41,764 INFO [stdout] (default task-2) item is name=jboss-fileupload-swallowed-exception.txt, StoreLocation=/home/cdolphy/gss/cases/02523510/jboss-eap-7.2/standalone/tmp/reproducer.war/upload_3c1122fc_16ea378ffdc__8000_00000003.tmp, size=9449bytes, isFormField=false, FieldName=fileupload But unsuccessful requests use HttpServletRequestImpl: 10:53:02,818 INFO [stdout] (default task-2) Class of Request - io.undertow.servlet.spec.HttpServletRequestImpl