Bad Request - Header Field Too Long Error

Did you verify the following links?

http://share.iddresources.org/bad-request-request-too-long-error/

https://stackoverflow.com/questions/6538926/chrome-returns-bad-request-request-too-long-when-navigating-to-local-iis-exp/44688723

Please check.

Hope it helps you.

I've googled around and have found how to clear it, but it happens everytime I load the site. Something about the cookies that are being created is the issue.

So, I figured out what was happeneing. The identity.authentication cookie contains all of the users roles. Our organization has like 80 million roles assigned to each user and they were all being put into the cookie causing it to be way to big. I removed all the roles and was able to get it to work.

Any thoughts on why it does it this way?

I am not sure how much big your website. Normally one user not assigned to 80 million roles. Please check the business logic on the following -

1. User registration logic
2. User login logic

hi Lawrence,

the reason why the authentication cookie includes all the roles for a user is so you can use that for AUTHORIZATION purposes.

if you don't need the roles, just don't pass it back in the list of claims sent with the token.

Clearing it is fine, but it happens every time the page loads when the site creates the authentication cookie. The problem, is our organization uses a lot of AD groups and those are turned into roles in kentico. When the site creates the cookie it includes all the roles assigned to the user as part of it which causes the issue, I've deleted all the AD roles that are created, but that may be an issue if our organization decided that they want us to use the AD groups for permissions. We'll probably just have to create a naming convention that we use specifically for the intranet and only import those.

Very useful information, I was also looking for a solution to a similar problem recently