ClearFoundation Tracker - ClearOS |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0002049 | ClearOS | app-flexshare - Flexshares | public | 2014-11-27 13:40 | 2016-02-25 09:15 |
|
| Reporter | marclaporte | |
| Assigned To | | |
| Priority | high | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | |
| Platform | | OS | | OS Version | |
| Product Version | 6.6.0 Beta 2 | |
| Target Version | 6.7.0 Updates | Fixed in Version | | |
|
| Summary | 0002049: Web server -> allow .htaccess overrides causes "forbidden" error with RewriteEngine ON |
| Description | Just tested the new 6.6.0 Beta 2. Overall, it's looking pretty solid so far.
"allow .htaccess overrides" is the default
It's common in web apps to use RewriteEngine in .htaccess
This error was seen as the default site and on an add-on site. tiki-check.php confirms that mod_rewrite is loaded.
Thanks!
|
| Steps To Reproduce | * Fresh install of ClearOS 6.6 Beta 2
* Install Web & MySQL apps
* Install Tiki
* The Tiki installer will add a symbolic link from .htaccess to _htaccess and it crashes there. Even if _htaccess is renamed to .htaccess, the error persists.
As a reference, see the <IfModule mod_rewrite.c>
http://sourceforge.net/p/tikiwiki/code/HEAD/tree/branches/12.x/_htaccess [^]
Changing RewriteEngine ON to RewriteEngine OFF in .htaccess prevents the error message. |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | |
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2014-11-27 13:40 | marclaporte | New Issue | |
| 2014-12-04 08:37 | marclaporte | Note Added: 0001319 | |
| 2014-12-10 10:25 | user2 | Status | new => acknowledged |
| 2014-12-24 12:09 | marclaporte | Note Added: 0001326 | |
| 2015-01-06 13:44 | user2 | Target Version | => 6.6.0 Updates |
| 2015-01-20 14:51 | user2 | Note Added: 0001335 | |
| 2015-01-20 14:53 | user2 | Note Added: 0001336 | |
| 2015-01-20 15:00 | user2 | Issue cloned: 0002138 | |
| 2015-01-20 22:17 | marclaporte | Note Added: 0001338 | |
| 2015-01-20 22:46 | marclaporte | Note Added: 0001339 | |
| 2015-01-30 17:13 | marclaporte | Note Added: 0001363 | |
| 2015-04-20 11:34 | marclaporte | Note Added: 0001471 | |
| 2015-08-13 18:19 | user2 | Target Version | 6.6.0 Updates => 6.7.0 |
| 2015-08-26 18:00 | user2 | Target Version | 6.7.0 => 6.7.0 Updates |
| 2016-02-25 09:13 | user2 | Category | app-web-server - Web Server => app-flexshare - Flexshares |
| 2016-02-25 09:15 | user2 | Note Added: 0002671 | |
| 2016-02-25 09:15 | user2 | Status | acknowledged => resolved |
| 2016-02-25 09:15 | user2 | Resolution | open => fixed |
| 2016-02-25 09:15 | user2 | Assigned To | => user2 |
| 2016-02-25 09:15 | user2 | Status | resolved => closed |
| 2016-02-25 09:15 | user2 | Assigned To | user2 => |
|
Notes |
|
|
|
Also, a few weeks ago, I had one server which was fine one day and had this problem the next. I manually adjusted the Apache config and figured it was just an issue with an upgrade caused by a local modification (I use PHP 5.5 on that server), so I didn't report the issue. By I now realize the bug is in the canonical version of ClearOS.
Thanks! |
|
|
|
|
Workaround is to add the following to the bottom of /etc/httpd/conf/httpd.conf (replacing example.com with your own path / domain):
<Directory "/var/www/virtual/example.com">
Options Indexes FollowSymLinks
AllowOverride All
Order allow,deny
Allow from all
</Directory>
This is odd because AllowOverride All is already in /etc/httpd/conf.d/flex-80.conf (which appears to not be picking up)
Thanks! |
|
|
|
(0001335)
|
|
user2
|
|
2015-01-20 14:51
|
|
The "Follow Symbolic Links" feature must be enabled for Tiki. Here was the error in the logs:
[Tue Jan 20 16:44:45 2015] [error] [client 192.168.55.1] Options FollowSymLinks or SymLinksIfOwnerMatch is off which implies that RewriteRule directive is forbidden... tiki-install.php
One I enabled symlinks, the forbidden rule disappeared.
Note: the Tiki app (yum install app-tiki). |
|
|
|
(0001336)
|
|
user2
|
|
2015-01-20 14:53
|
|
|
I will change the title of the feature from "Follow Symbolic Links" to "Follow Symbolic Links / Allow Rewrite". |
|
|
|
|
Thanks Peter!
That's an easy fix! I didn't realize these two things were related. I added a comment here: https://dev.tiki.org/item2479 [^] to make Tiki more robust to this type of situation.
In my tests, the directive "Allow [.htaccess] Override" seems to work even if it's turned off. I would expect that most folks using ClearOS would not want to prevent .htaccess override, but the best would be to fix or remove.
Specifically, changelog.txt is blocked no matter if "Allow [.htaccess] Override" is on or off when I added a .htaccess which contains the content below:
<FilesMatch "^(changelog.txt|_htaccess)$">
order deny,allow
deny from all
</FilesMatch>
Thanks! |
|
|
|
|
Never mind about Allow [.htaccess] Override -> I rebooted server and now it works.
Thanks! |
|
|
|
|
|
|
|
|
|
|
|
(0002671)
|
|
user2
|
|
2016-02-25 09:15
|
|
|
Tracker cleanup. This was resolved in May 2015. |
|