Request Size Limit Policy

Important: This page describes Classic APIM. For APIM 3.0, refer to API Management 3.0.

Restricts requests based on the size of their content.

Policy execution order

The Request Size Limit policy executes early in request processing to limit the effects of oversized requests.


Field/Field set	Description
When this policy should be applied	An expression that defines one or more conditions that must be true for the policy to execute. Example: The expression `request.method == "POST"` causes the policy to execute only on `POST` requests.
Max Request Size	The maximum number of bytes allowed. Default value: 10,000,000 (10 MB) Example: 25,000,000
Description	Only requests under the specified size limit are being accepted

If the request has content (for example, a POST or PUT request) and the content length is missing or is larger than the configured limit, the request is rejected.

HTTP Response Codes


Code	Meaning
400	The content length isn't a number.
411	The content length is missing or invalid.
413	The content-length is bigger than the configured size.