.htaccess RewriteRule causing 403 Forbidden

php apache .htaccess http-status-code-403 recess
10,155

Solution 1

As it turns out, I needed to change the line:

Options FollowSymLinks

to:

Options +FollowSymLinks

Solution 2

Not familiar with that framework, but it looks like either there are some lines elsewhere or it may need tweaking.

Though I admittedly am no mod rewrite expert, looks like first line is directing all requests to request_file.html, then on line 2 if the file does not exist it calls up boostrap.php on line 3.

Your problem may lie in boostrap.php, see what happens in that script and how the request is handled. A debugger may be useful at that step. Although you may get this to work, it seems to me it may not be optimal as is. For instance, I believe usually there is a ruleset that avoid havings .gif, .jpg .css directed to your routing script. Something like this:

RewriteCond $1 !^(favicon\.ico|favicon\.png|media|robots\.txt|crossdomain\.xml|css|js)

This avoids the overhead of having php handle the requests for those types of files. There would even be more things to consider for robust application production usage, just tweak your rules so everything is routed proper and things should be fine.

Share:
10,155
Leonard Thieu
Author by

Leonard Thieu

Updated on June 24, 2022

Comments

  • Leonard Thieu
    Leonard Thieu almost 2 years

    I'm trying to install the Recess PHP framework on my web host (Dreamhost). It includes the following .htaccess:

    Options FollowSymLinks
RewriteEngine On
RewriteRule ^([^.]+)$ $1.html [QSA]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule ^(.*)$ bootstrap.php [QSA,L]

    This works fine on my machine (XAMPP 1.7.7 on Windows 7) but results in 403 Forbidden errors on some files my web host. All directory permissions are set to 755 and all file permissions are set to 644. PHP runs under the same user that owns the files.

    The following URLs result in 403s:

    • http://test.dd.moofz.com/
    • http://test.dd.moofz.com/recess-conf.php
    • http://test.dd.moofz.com/index.php
    • http://test.dd.moofz.com/bootstrap.php
    • http://test.dd.moofz.com/MIT-LICENSE

    The following URLs don't:

    • http://test.dd.moofz.com/.gitignore
    • http://test.dd.moofz.com/httpd_logo_wide.gif
    • http://test.dd.moofz.com/README.textile
    • http://test.dd.moofz.com/the-book-of-recess.pdf

    What would cause this to happen?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Allow access to all files from only 1 IP address and redirect all others to other file
.htaccess in Subfolder not working
only default permalinks working wordpress others become 404 error
Is it possible to change the $_SERVER['HTTP_HOST'] in htaccess?
How to check in .htaccess if PHP is enabled?
CodeIgniter .htaccess index.php rewrite not working on user directory
Apache 403 Forbidden When Uploading Files
htaccess 301 redirect not working properly
500 Internal Server Error in CodeIgniter application
How to run php script in png/jpg extension