Forbidden access to manager/saveSetup/5

Are you responsible for making OJS work -- installing, upgrading, migrating or troubleshooting? Do you think you've found a bug? Post in this forum.

Moderators: jmacgreg, btbell, michael, bdgregg, barbarah, asmecher

Forum rules
The Public Knowledge Project Support Forum is moving to http://forum.pkp.sfu.ca

This forum will be maintained permanently as an archived historical resource, but all new questions should be added to the new forum. Questions will no longer be monitored on this old forum after March 30, 2015.
wblandon
Posts: 27
Joined: Fri Apr 27, 2012 2:25 pm

Forbidden access to manager/saveSetup/5

Postby wblandon » Fri Apr 27, 2012 2:44 pm

Hi,

I've been getting this error since I migrated my OJS from CentOS to Fedora 16.

Forbidden
You don't have permission to access /index.php/journal/manager/saveSetup/5 on this server.

--------------------------------------------------------------------------------
Apache/2.2.22 (Fedora) Server at publicaciones.eafit.edu.co Port 80

I've check the permissions on the Apache directory, config files, firewall permissions, but I don't know what else to do.

Thanks in advance.

JasonNugent
Site Admin
Posts: 910
Joined: Tue Jan 10, 2006 6:20 am

Re: Forbidden access to manager/saveSetup/5

Postby JasonNugent » Fri Apr 27, 2012 4:35 pm

Hi wblandon,

do all OJS pages give you this error, or only this one? If they all do this, you don't happen to have SELinux enabled on your new machine, by chance? If so, you may need to make allowances in your server security config for Apache to run correctly. It is often enabled (and unconfigured) on new servers.

http://docs.fedoraproject.org/en-US/Fed ... Linux_FAQ/

Regards,
Jason

wblandon
Posts: 27
Joined: Fri Apr 27, 2012 2:25 pm

Re: Forbidden access to manager/saveSetup/5

Postby wblandon » Fri Apr 27, 2012 6:04 pm

Hi Jason.

Thanks for your answer. This error appears when we want to change some fields in The Look. For example to change Journal title or add and image, and then click on Save and continue. We will review the Fedora documentation suggested you.

Regards.

Walter Blandón

JasonNugent
Site Admin
Posts: 910
Joined: Tue Jan 10, 2006 6:20 am

Re: Forbidden access to manager/saveSetup/5

Postby JasonNugent » Sat Apr 28, 2012 3:10 am

Hi Walter,

If it's only happening when you attempt to save your changes it is probably not an SELinux configuration problem. There is nothing in your logs? Apache error logs or PHP error logs, perhaps?

Regards,
Jason

wblandon
Posts: 27
Joined: Fri Apr 27, 2012 2:25 pm

Re: Forbidden access to manager/saveSetup/5

Postby wblandon » Mon Apr 30, 2012 7:29 am

Hi Jason,

First, the Firewall is disabled, so I agree with you, I don't think is a SELinux configuration problem.

These are the errors I get in /var/log/httpd/error_log whenever I try to change The Look on any of my journals.

[Mon Apr 30 09:21:15 2012] [error] [client 223.18.184.53] ojs2 has produced an error\n Message: WARNING: Missing argument 1 for PaymentManager::PaymentManager(), called in /var/www/html/ojs/classes/payment/ojs/OJSPaymentManager.inc.php on line 35 and defined\n In file: /var/www/html/ojs/lib/pkp/classes/payment/PaymentManager.inc.php\n At line: 22\n Stacktrace: \n Server info:\n OS: Linux\n PHP Version: 5.3.10\n Apache Version: Apache/2.2.22 (Fedora)\n DB Driver: mysql\n DB server version: 5.5.22, referer: http://publicaciones.eafit.edu.co/
[Mon Apr 30 09:21:21 2012] [error] [client 223.18.184.53] ojs2 has produced an error\n Message: WARNING: Missing argument 1 for PaymentManager::PaymentManager(), called in /var/www/html/ojs/classes/payment/ojs/OJSPaymentManager.inc.php on line 35 and defined\n In file: /var/www/html/ojs/lib/pkp/classes/payment/PaymentManager.inc.php\n At line: 22\n Stacktrace: \n Server info:\n OS: Linux\n PHP Version: 5.3.10\n Apache Version: Apache/2.2.22 (Fedora)\n DB Driver: mysql\n DB server version: 5.5.22, referer: http://publicaciones.eafit.edu.co/index ... idad-eafit
[Mon Apr 30 09:21:26 2012] [error] [client 223.18.184.53] ojs2 has produced an error\n Message: WARNING: Missing argument 1 for PaymentManager::PaymentManager(), called in /var/www/html/ojs/classes/payment/ojs/OJSPaymentManager.inc.php on line 35 and defined\n In file: /var/www/html/ojs/lib/pkp/classes/payment/PaymentManager.inc.php\n At line: 22\n Stacktrace: \n Server info:\n OS: Linux\n PHP Version: 5.3.10\n Apache Version: Apache/2.2.22 (Fedora)\n DB Driver: mysql\n DB server version: 5.5.22, referer: http://publicaciones.eafit.edu.co/index ... gin/signIn
[Mon Apr 30 09:21:29 2012] [error] [client 223.18.184.53] ojs2 has produced an error\n Message: WARNING: Missing argument 1 for PaymentManager::PaymentManager(), called in /var/www/html/ojs/classes/payment/ojs/OJSPaymentManager.inc.php on line 35 and defined\n In file: /var/www/html/ojs/lib/pkp/classes/payment/PaymentManager.inc.php\n At line: 22\n Stacktrace: \n Server info:\n OS: Linux\n PHP Version: 5.3.10\n Apache Version: Apache/2.2.22 (Fedora)\n DB Driver: mysql\n DB server version: 5.5.22, referer: http://publicaciones.eafit.edu.co/index ... it/manager
[Mon Apr 30 09:21:31 2012] [error] [client 223.18.184.53] ojs2 has produced an error\n Message: WARNING: Missing argument 1 for PaymentManager::PaymentManager(), called in /var/www/html/ojs/classes/payment/ojs/OJSPaymentManager.inc.php on line 35 and defined\n In file: /var/www/html/ojs/lib/pkp/classes/payment/PaymentManager.inc.php\n At line: 22\n Stacktrace: \n Server info:\n OS: Linux\n PHP Version: 5.3.10\n Apache Version: Apache/2.2.22 (Fedora)\n DB Driver: mysql\n DB server version: 5.5.22, referer: http://publicaciones.eafit.edu.co/index ... ager/setup
[Mon Apr 30 09:21:32 2012] [error] [client 223.18.184.53] File does not exist: /var/www/html/ojs/lib/pkp/lib/tinymce/jscripts/tiny_mce/plugins/jbimages/img, referer: http://publicaciones.eafit.edu.co/index ... er/setup/5

Hope this helps.

Thanks.
Walter

wblandon
Posts: 27
Joined: Fri Apr 27, 2012 2:25 pm

Re: Forbidden access to manager/saveSetup/5

Postby wblandon » Tue May 08, 2012 8:27 am

Hi Jason,

Still don't know what makes this error ocurr? Do you need any other logs o something like that?

I'm still getting the "You don't have permission to access..." and I really need to find a solution for this.

Again, thanks.

asmecher
Posts: 10015
Joined: Wed Aug 10, 2005 12:56 pm
Contact:

Re: Forbidden access to manager/saveSetup/5

Postby asmecher » Tue May 08, 2012 8:39 am

Hi all,

It might be worth checking if you're running into something like the situation described at http://pkp.sfu.ca/support/forum/viewtopic.php?f=8&t=8602.

Regards,
Alec Smecher
Public Knowledge Project Team

JasonNugent
Site Admin
Posts: 910
Joined: Tue Jan 10, 2006 6:20 am

Re: Forbidden access to manager/saveSetup/5

Postby JasonNugent » Tue May 08, 2012 9:44 am

Hi wblandon,

I will also mention that those PaymentManager warnings can be ignored. They are essentially cosmetic -- PHP is complaining about a small discrepancy in a function call.

Regards,
Jason

wblandon
Posts: 27
Joined: Fri Apr 27, 2012 2:25 pm

Re: Forbidden access to manager/saveSetup/5

Postby wblandon » Thu May 17, 2012 7:04 am

Hi Alec and Jason.

We disabled mod_security in Apache and the problem was resolved. But isn't recommended for server security. Do you know what rules we can enable in mod_security for OJS work? We have Fedora 16.

Thanks for your support.

JasonNugent
Site Admin
Posts: 910
Joined: Tue Jan 10, 2006 6:20 am

Re: Forbidden access to manager/saveSetup/5

Postby JasonNugent » Thu May 17, 2012 9:26 am

Hey Walter,

I'd have to look at the (comprehensive) mod_security config that comes with Fedora 16 to see how things are configured, but what you can do is turn mod_security back on, but set it to "detection only". In that mode, it will log what it would consider a problem but continue to let things pass through normally. You can do this by re-enabling mod_security and setting:

Code: Select all

SecRuleEngine DetectionOnly


You might have to dig around a bit to find out where that configuration directive goes -- I am unfamiliar with how the config files ship on Fedora. They often go inside of Apache's httpd.conf file. The mod_security module logs to where ever SecAuditLog points to. Once you know what rule is causing problems with OJS, you can edit or disable that specific one.

Cheers,
Jason


Return to “OJS Technical Support”

Who is online

Users browsing this forum: Google [Bot], Yahoo [Bot] and 2 guests