Home › Forums › BulletProof Security Pro › My Calendar Plugin – Shortcode Builder 403 Error, Shortcode Button, WYSIWYG
- This topic has 6 replies, 2 voices, and was last updated 12 years ago by AITpro Admin.
-
AuthorPosts
-
AITpro AdminKeymaster
Email Question:
I have the pro version installed all on except ARQ.
Now im getting a problem with one og my plygins My Calendar. It has a shortcode builder. So when i in pages (the editor) presses the my calendar shortcode builder i get a 403 forbidden page. The supplier is saying this:
The shortcode button calls a JavaScript thickbox interface that includes a variety of JavaScripts and PHP files used to generate a shortcode and insert it into your editor. All of the files are contained in the plug-in directory under /my-calendar/button/
Best Regards
Morten
AITpro AdminKeymasterI will test this plugin and post the results back here. Thanks.
AITpro AdminKeymasterAlso please go to the B-Core Security Log page and post the 403 error here.
AITpro AdminKeymasterI have tested the My Calendar plugin and a 403 error did not occur when creating a new Page and using the Insert My Calendar WYSIWG button on the WP Editor Toolbar to insert the shortcode. This 403 error does not appear to be caused by BPS. Please check your B-Core Security Log for the error and post it here.
mbechParticipantI cannot se anything in my b-core security log. BUT i turned of BPS firewall no change still 403 error. Then i deactivated BPS pro and it worked as it should. So somehow it is BPS pro causing the error. I’ve follow the installation video completely. ARQ is NOT turned on. My Calendar is installed after BPR was turned on.
AITpro AdminKeymasterOk I will need to log into your site and see what is going on. Please create a temporary WordPress Admin login account and send that login information directly to my email edward at ait-pro dot com. Thanks.
AITpro AdminKeymasterResolved:
I am not exactly sure why this error did not occur on my testing site, but I will look into that further.
After logging in and testing adding a My Calendar Shortcode by clicking the My Calendar Shortcode button on the WYSIWYG editor toolbar I confirmed that this 403 Error was occurring:
403 Forbidden
Access to this resource on the server is denied!
Powered By LiteSpeed Web Server
LiteSpeed Technologies is not ansvarlig for administration and contents of this web site!Cause:
The pop up window that is generated is “virtual” so that is why it is not being logged in the BPS Pro Security Log.
This pop up window is doing something that BPS Pro sees as unsafe. It is actually ok/safe to allow this.
What I had to do was to comment out this security filter in your root .htaccess file by adding a pound sign # in front of this security rule because of the way the pop up is doing what it is doing. I will document this in the Forum so that if you ever need to create a new root .htaccess file in the future then you will know exactly what you need to comment out in your root .htaccess file.
#RewriteCond %{THE_REQUEST} \?\ HTTP/ [NC,OR]
-
AuthorPosts
- You must be logged in to reply to this topic.