Forbidden error when saving Checkout in config.

  • Posts: 68
  • Thank you received: 0
7 years 7 months ago #248567

-- url of the page with the problem -- : mybabylonia.gr
-- HikaShop version -- : 1.5.8
-- Joomla version -- : 2.5.4

Hi,
I'm getting a forbidden error when trying to save the checkout in configuration.
What I'm trying to do is add the coupon field in the checkout. Is it possible to do it manually?
Been reading around for this and tried many options found in forum etc with no luck.
I can save joomla's global configuration.

I do believe I found a way to edit and save the checkout process in the past, but cannot remember what I did to fix it.

Any help would be appreciated.

Error:
Forbidden
You don't have permission to access /administrator/index.php on this server.
Apache Server at mybabylonia.gr Port 443

Last edit: 7 years 7 months ago by ROUBOS.

Please Log in or Create an account to join the conversation.

  • Posts: 26007
  • Thank you received: 4004
  • MODERATOR
7 years 7 months ago #248576

Hi,

It looks like your web server have some limitations for the "POST size".
The HikaShop configuration is too big (too much data) and your server is refusing to process the page because the content is bigger than is limitation.

Regards,

Jerome - Obsidev.com
HikaMarket & HikaSerial developer / HikaShop core dev team.

Also helping the HikaShop support team when having some time or couldn't sleep.
By the way, do not send me private message, use the "contact us" form instead.

Please Log in or Create an account to join the conversation.

  • Posts: 68
  • Thank you received: 0
7 years 7 months ago #248610

I tried fixing using a php.in file with no luck.

file_uploads = On
memory_limit = 256M
upload_max_filesize = 32M
post_max_size = 32M
max_input_time = 180
memory_limit = 128M
max_execution_time=300;
max_input_vars=10000

Please Log in or Create an account to join the conversation.

  • Posts: 26007
  • Thank you received: 4004
  • MODERATOR
7 years 7 months ago #248613

Hi,

The limitation can also be done in the web-server or by a "security" extension.

Regards,

Jerome - Obsidev.com
HikaMarket & HikaSerial developer / HikaShop core dev team.

Also helping the HikaShop support team when having some time or couldn't sleep.
By the way, do not send me private message, use the "contact us" form instead.

Please Log in or Create an account to join the conversation.

  • Posts: 68
  • Thank you received: 0
7 years 7 months ago #248647

Hi,
I rang the hosting support and they changed the post size to its maximum with no luck.
Look at the attached screenshot.

could I add the coupon field by editing code instead of going through the admin area?
thanks

memory_limit 384M
max_execution_time 180
max_input_time 180
post_max_size 128M
upload_max_filesize 128M

Attachments:

Please Log in or Create an account to join the conversation.

  • Posts: 81540
  • Thank you received: 13071
  • MODERATOR
7 years 7 months ago #248649

Hi,

So are you using any security extension ? Like suhosin ? It has its own settings which can also block requests with too much data or detected as potentially problematic. Or security extensions for PHP or Apache can potentially block requests.

Please Log in or Create an account to join the conversation.

  • Posts: 68
  • Thank you received: 0
7 years 7 months ago #248694

Getting the following error in log of Web Application firewall (plesk):

ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "MULTIPART_STRICT_ERROR" required. [line "30"] [id "210240"] [rev "1"] [msg "COMODO WAF: Multipart request body failed strict validation|PE 0|mybabylonia.gr|F"] [severity "CRITICAL"] [hostname "mybabylonia.gr"] [uri "/administrator/index.php"] [unique_id "V8SjIX8AAAEABmaMI8MAAAAx"][file "/etc/httpd/conf/modsecurity.d/rules/comodo/12_HTTP_Protocol.conf"] [line "30"] [id "210240"] [rev "1"] [msg "COMODO WAF: Multipart request body failed strict validation|PE 0|mybabylonia.gr|F"] [severity "CRITICAL"] [hostname "mybabylonia.gr"] [uri "/administrator/index.php"] [unique_id "V8SjIX8AAAEABmaMI8MAAAAx"]

Please Log in or Create an account to join the conversation.

  • Posts: 81540
  • Thank you received: 13071
  • MODERATOR
7 years 7 months ago #248729

Hi,

As expected, this comes from a security module of your hosting:
www.inmotionhosting.com/support/website/...ict-validation-error
So there must be some characters that you added somewhere in the HikaShop configuration which are regarded as potential security issues.
I would recommend to disable the problematic rule, even temporarily, in /etc/httpd/conf/modsecurity.d/rules/comodo/12_HTTP_Protocol.conf on your server so that you can save the configuration again.
You might need to contact your hosting company to be able to do that.

Please Log in or Create an account to join the conversation.

  • Posts: 68
  • Thank you received: 0
7 years 7 months ago #249183

Thanks for that,
I called host support and an exception was added to the firewall and now I am able to save properly.

Thanks again

Please Log in or Create an account to join the conversation.

Time to create page: 0.072 seconds
Powered by Kunena Forum