Request entity too large for password reset through sdk

[ctholho]

Hi folks,
this is not a directus issue but probably thanks to our own set up.
I'm trying to solve a weird suddenly occurring issue – across multiple devices; before and after updating to directus v.9.18.1.

After requesting a password reset, I follow the link in the email and set a new password. This is all happening on our own vue frontend with the directus-sdk. When I try to reset the password I get an HTTP response: message: "request entity too large", extensions: {code: "INVALID_PAYLOAD"}}]

I tried this in a dev environment which resembles production quite a bit (HTTPS, CORS origins, etc.) and of course it works. I don't have control of the reverse proxy in dev (gitpod.io). I do in production though. Password and emails are the same length in prod and dev. (And they're also nothing unusual) and in the past I increased the max payload for directus and nginx to more than enough.

The preflight and reset request

And more info on the reset request

🙏 Does anyone know how I should troubleshoot further?

Edit: Somehow, this suddenly became a problem on the directus app itself. It's the same error without the preflight of course. Disabling Cloudflare doesn't make a difference.

[ctholho]

Just to update. It was a wrong configuration of the directus MAX_PAYLOAD_SIZE option. We used the string 100M, like you would with nginx. It should have been 100mb.