Announcement

Collapse
No announcement yet.

Error 403: Access denied while changing settiings.

Collapse
X
Collapse
 
  • Page of 2
  • Filter
  • Time
  • Show
Clear All
new posts
Previous 1 2 template Next
  • #1

    Error 403: Access denied while changing settiings.

    Hi
    On Linux machine with Apache 2.4+ and PHP 7.2+
    After successful installation, I can manage to create a user as admin but I can not manage edit any user settings. "Error 403: Access denied"

    Any help.

    Tags: None
  • #2
    Hello,
    Please check an EspoCRM log file to find out the 403 error cause https://docs.espocrm.com/administrat...ng/#check-logs.
    Last edited by Maximus; 06-14-2021, 05:05 PM.

    Comment

    • #3
      I did it but data/log folder not created while installing. I did create manually but no any records.

      I am using centos 7 by the way.

      Comment

      • #4
        Perhaps folders/file permissions might be wrong. Please follow this manual to set up proper permissions https://docs.espocrm.com/administrat...n/#permissions

        Comment

        • #5
          The file and directory permissions are as shown in the attacments.

          I did completely remove and reinstall it with no solution.
          Please see error_403_sample.png, after click the save button error fires.


          thank you.
          5 Photos

          Comment

          • #6
            The file and directory permissions are as shown in the attacments.

            I did completely remove and reinstall it with no solution.
            Please see error_403_sample.png, after click the save button error fires.


            thank you.

            Comment

            • #7
              Hello,
              The file owner and group owner should be the webserver user. Is ismaili a web server user? Please check it.

              Comment

              • #8
                Yes, For CWP7 ( Centos 7 web hosting sollution .) ismaili has access fully /public_html/ismaili/*.*

                running without any problems Wordpress, Projectsend ....

                Thank you

                Comment

                • #9
                  Please do this:
                  1. Press F12 to open the developer's tool panel in your browser
                  2. Switch to the Console tab
                  3. Reproduce the 403 error again and check, what the element returns error 403 in the Console tab.
                  • Likes 1

                  Comment

                  • #10
                    Please see the attachment.

                    I Use https://... is it ok?

                    1 Photo

                    Comment

                    • espcrm
                      #10.1
                      espcrm commented
                      06-28-2021, 12:33 AM
                      Editing a comment
                      You should also click on that "arrow" next to the error too. > Put
                  • #11
                    I believe clicking on that "arrow" next to the error won't give useful information. Settings access denied gives me 2 options:
                    1. Check the permissions already mentioned above. Also, you may check whether you have a proper user and group in the /data/config.php file (search for the 'defaultPermissions')
                    2. Possible issues with rewrite rules (less possible)
                    • Likes 1

                    Comment

                    • #12
                      Hi
                      config.php as follows

                      ***************************

                      'personNameFormat' => 'firstLast',
                      'newNotificationCountInTitle' => false,
                      'pdfEngine' => 'Tcpdf',
                      'isInstalled' => true,
                      'microtime' => 1624183060.382082,
                      'siteUrl' => 'http://ismailinci.com/crm',
                      'passwordSalt' => '1234567e25c9471',
                      'cryptKey' => 'd8fdd45a2344295e0c2997dd6bfbaece',
                      'hashSecretKey' => '4b56cd9c5222221013ad7ccdc6ef6c590',
                      'defaultPermissions' => [
                      'user' => 1000,
                      'group' => 1000
                      ],
                      'fullTextSearchMinLength' => 4,
                      'actualDatabaseType' => 'mariadb',
                      'actualDatabaseVersion' => '10.2.37'


                      ************************

                      root directory of the application ( Espocrm)
                      ../crm/


                      .htaccess
                      --------------------------------------



                      <ifModule mod_headers.c>
                      Header always set Access-Control-Allow-Methods "POST, GET, PUT, PATCH, DELETE"
                      </ifModule>

                      DirectoryIndex index.php index.html

                      <IfModule mod_rewrite.c>
                      RewriteEngine On

                      # PROTECTED DIRECTORIES
                      RewriteCond %{REQUEST_FILENAME} -d
                      RewriteRule ^/?(api|client)/ - [F]

                      RewriteRule ^/?data/ - [F]
                      RewriteRule ^/?application/ - [F]
                      RewriteRule ^/?custom/ - [F]
                      RewriteRule ^/?vendor/ - [F]
                      RewriteRule ^/?client/?$ - [F]
                      #END PROTECTED DIRECTORIES

                      RewriteRule .* - [E=HTTP_ESPO_CGI_AUTH:%{HTTP:Authorization}]

                      RewriteRule /?web\.config - [F]
                      </IfModule>

                      ************************************************** ******************

                      Besides that, I can create new users!





                      "rewrite rules (less possible)" who can I check it ?

                      Thank you
                      3 Photos
                      Last edited by Maximus; 07-08-2021, 07:46 PM.

                      Comment

                      • #13
                        Hi,
                        Sorry for the delayed reply. I have no idea why that happened. I doubt that B2C mode id connected to this issue.
                        Could you open Administration -> Authentication and tell what the Authentication Method is selected?

                        Comment

                        • #14
                          Authentication Method = Espo

                          Comment

                          • #15
                            No Idea, sorry.
                            I've also noticed that you have http:// scheme set for your CRM domain in Administartion -> Settings -> Site URL but in fact you are connecting to CRM through https:// connection. I doubt that it is also might be connected to the issue, but you can check it. Anyway I suggest you change it to https:// as it is very importent for different integrations available in extensions.

                            Comment

                            Previous 1 2 template Next
                            Working...
                            X