Clean D 6.20 install, and a views page, with "Access: authenticated user"...
If i go as anonymous on that page it gives me "Server Error - 403 Forbidden: Acces is deniend", but no redirect on login form..

See screenshot

PS: if it helps i'm using web.config (IIS's .htaccess) provided from Acquia.

CommentFileSizeAuthor
#3 web.config.txt2.16 KBelgandoz
D6_403_redirect_doesn_work.jpg134.38 KBelgandoz
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

hunmonk’s picture

hunmonk CreditAttribution: hunmonk commented
Status: Active » Postponed (maintainer needs more info)

can't really help you with IIS, hopefully someone else can. you can also try check the views issue queue -- i seem to recall an access-related issue w/ LT that we eventually determined was a views bug.

you can also try disabling all other contribs to see if one of them is causing a problem.

jim.phelan’s picture

jim.phelan CreditAttribution: jim.phelan commented
Status: Postponed (maintainer needs more info) » Active

Just a thought, check if “IIS -> Error Pages -> Edit Features Settings” for this site is configured to show 'Custom Errors' or ‘Detailed errors for local pages and custom error pages for remote requests.’ If it is set to either test it with 'Edit Featues Settings' set to ‘Detail errors’ and it may work (or may not) but if custom errors are being sent then Drupal may not recognise it as a 403.

elgandoz’s picture

elgandoz CreditAttribution: elgandoz commented
Title: 403 login form does not work on IIS (windows) and views » 403 login form does not work on IIS 7 (windows server)
FileSize
web.config.txt2.16 KB

Thanks guys. I fixed the problem adding 2 lines in web.config (taken from D7) in , where there is alredy the rule for 404 error.
So the whole tag is:

<httpErrors>
      <remove statusCode="404" subStatusCode="-1" />
      <error statusCode="404" prefixLanguageFilePath="" path="/index.php" responseMode="ExecuteURL" />
	  <remove statusCode="403" subStatusCode="-1" />
      <error statusCode="403" prefixLanguageFilePath="" path="/index.php?q=user/login" responseMode="ExecuteURL" />
    </httpErrors>

I attached the whole web.config

It seems to work fine in my case, but only with LoginToboggan installed and the 403 rule active. After login it brings me to desired -no-more-denied- page (I have LoginDestination installed too).
I think the reason is related to url (the login page appears with the denied url), but I'm not a web.config pro.
For me is fine because I usually install this module anyway in my sites, but have this function working in an independent way would be better.
I will test this on D7.

hunmonk’s picture

hunmonk CreditAttribution: hunmonk commented
Status: Active » Fixed

seems like this is fixed for now.

Status: Fixed » Closed (fixed)
Issue tags: -403 access forbidden

Automatically closed -- issue fixed for 2 weeks with no activity.

Issue tags: +

Restoring issue tags, see #2125755: System messages removed all issue tags during D7 upgrade.

apaderno’s picture

apaderno
he/him
Primary language Italian
Location Brescia, 🇮🇹 🇪🇺
CreditAttribution: apaderno as a volunteer commented
Version: 6.x-1.8 » 6.x-1.x-dev
Issue summary: View changes
Issue tags: -403 (duplicate tag) +403