Error 403: Access denied while changing settiings.

**Maximus** · 06-14-2021, 05:00 PM

Hello,
Please check an EspoCRM log file to find out the 403 error cause https://docs.espocrm.com/administrat...ng/#check-logs.

**iincitr** · 06-15-2021, 07:17 AM

I did it but data/log folder not created while installing. I did create manually but no any records.

I am using centos 7 by the way.

**Maximus** · 06-16-2021, 08:31 PM

Perhaps folders/file permissions might be wrong. Please follow this manual to set up proper permissions https://docs.espocrm.com/administrat...n/#permissions

**iincitr** · 06-20-2021, 10:14 AM

The file and directory permissions are as shown in the attacments.

I did completely remove and reinstall it with no solution.
Please see error_403_sample.png, after click the save button error fires.

thank you.

**iincitr** · 06-21-2021, 09:18 AM

The file and directory permissions are as shown in the attacments.

I did completely remove and reinstall it with no solution.
Please see error_403_sample.png, after click the save button error fires.

thank you.

**Maximus** · 06-22-2021, 04:35 PM

Hello,
The file owner and group owner should be the webserver user. Is ismaili a web server user? Please check it.

**iincitr** · 06-23-2021, 11:09 AM

Yes, For CWP7 ( Centos 7 web hosting sollution .) ismaili has access fully /public_html/ismaili/*.*

running without any problems Wordpress, Projectsend ....

Thank you

**Maximus** · 06-24-2021, 07:15 PM

Please do this:
1. Press F12 to open the developer's tool panel in your browser
2. Switch to the Console tab
3. Reproduce the 403 error again and check, what the element returns error 403 in the Console tab.

**iincitr** · 06-26-2021, 09:29 AM

Please see the attachment.

I Use https://... is it ok?

**Maximus** · 06-30-2021, 08:20 PM

I believe clicking on that "arrow" next to the error won't give useful information. Settings access denied gives me 2 options:
1. Check the permissions already mentioned above. Also, you may check whether you have a proper user and group in the /data/config.php file (search for the 'defaultPermissions')
2. Possible issues with rewrite rules (less possible)

**iincitr** · 07-01-2021, 07:29 AM

Hi
config.php as follows

***************************

'personNameFormat' => 'firstLast',
'newNotificationCountInTitle' => false,
'pdfEngine' => 'Tcpdf',
'isInstalled' => true,
'microtime' => 1624183060.382082,
'siteUrl' => 'http://ismailinci.com/crm',
'passwordSalt' => '1234567e25c9471',
'cryptKey' => 'd8fdd45a2344295e0c2997dd6bfbaece',
'hashSecretKey' => '4b56cd9c5222221013ad7ccdc6ef6c590',
'defaultPermissions' => [
'user' => 1000,
'group' => 1000
],
'fullTextSearchMinLength' => 4,
'actualDatabaseType' => 'mariadb',
'actualDatabaseVersion' => '10.2.37'

************************

root directory of the application ( Espocrm)
../crm/

.htaccess
--------------------------------------

<ifModule mod_headers.c>
Header always set Access-Control-Allow-Methods "POST, GET, PUT, PATCH, DELETE"
</ifModule>

DirectoryIndex index.php index.html

<IfModule mod_rewrite.c>
RewriteEngine On

# PROTECTED DIRECTORIES
RewriteCond %{REQUEST_FILENAME} -d
RewriteRule ^/?(api|client)/ - [F]

RewriteRule ^/?data/ - [F]
RewriteRule ^/?application/ - [F]
RewriteRule ^/?custom/ - [F]
RewriteRule ^/?vendor/ - [F]
RewriteRule ^/?client/?$ - [F]
#END PROTECTED DIRECTORIES

RewriteRule .* - [E=HTTP_ESPO_CGI_AUTH:%{HTTP:Authorization}]

RewriteRule /?web\.config - [F]
</IfModule>

************************************************** ******************

Besides that, I can create new users!

"rewrite rules (less possible)" who can I check it ?

Thank you

**Maximus** · 07-13-2021, 06:35 PM

Hi,
Sorry for the delayed reply. I have no idea why that happened. I doubt that B2C mode id connected to this issue.
Could you open Administration -> Authentication and tell what the Authentication Method is selected?

**iincitr** · 07-14-2021, 01:41 AM

Authentication Method = Espo

**Maximus** · 07-14-2021, 08:18 PM

No Idea, sorry.
I've also noticed that you have http:// scheme set for your CRM domain in Administartion -> Settings -> Site URL but in fact you are connecting to CRM through https:// connection. I doubt that it is also might be connected to the issue, but you can check it. Anyway I suggest you change it to https:// as it is very importent for different integrations available in extensions.

Error 403: Access denied while changing settiings.

Error 403: Access denied while changing settiings.

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment