Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

trigger 403 in php so that it shows the ErrorDocument

Tags:

php

http-status-code-403

.htaccess

recently I set up custom-made error documents for my server.

I started with a 404 page and this works like a charm: file not found automatically shows the specified 404.php page. However, with 403 I have some trouble. I set it up the same way, but I only get a blank page. It does not show the 403.php page as set in the .htaccess document. Any ideas?

Here is my code:

.htaccess:

Options -Indexes
ErrorDocument 403 /403.php
ErrorDocument 404 /404.php

php:

<?php 
header("HTTP/1.1 403 Unauthorized");
exit;
?>
like image 786
Kolja Avatar asked Jan 22 '14 15:01

Kolja

2 Answers

The error document defined in the server's config only get's loaded when the server (Apache) encounters a 403 error.

If you force an error through PHP, like send 403 status code, this happens in PHP not in Apache.

So when you already know the site I want to render will fail due to unauthorized, why leave it up to apache what will happen?

<?php 
header("HTTP/1.1 403 Unauthorized");
// either:
header("Location: /403.php");
// or:
include('403.php');
exit;
?>

I started with a 404 page and this works like a charm:

Are you sure?

Do you have a script, sending 404 and get redirected to 404.php? Or did you just open a non-existent URI and got redirected?

like image 199
Daniel W. Avatar answered Oct 15 '22 11:10

Daniel W.

Go to your server's real 403 page. (Go to a forbidden URL on your server, or go to any 403 page you like)

Right-click and select 'view source'. Select all the source and save it to file on your domain like: http://domain.com/403.php

Now go to your real forbidden page (or a forbidden situation in some part of your php) example: http://domain.com/members/my_forbidden_page.php

echo this code below before any HTML output or header! (even a whitespace will cause PHP to send HTML/TEXT HTTP Header and it won't work) The code below should be your first line!

<?php header('HTTP/1.0 403 Forbidden');
$contents = file_get_contents('/home/your_account/public_html/domain.com/403.php', TRUE);
exit($contents);

I checked and verified with CPANEL Latest Visitors and it is registered as exact 403 event.

like image 30
Tarik Avatar answered Oct 15 '22 09:10

Tarik
Sign in to Comment

Related questions

Uncaught Error: Container is not defined
Take PHP Debug mode off for CakePHP
PHP Script Running Twice
Cant find base path for bundle
jQuery Real Person - always fails
Catch ErrorException that wraps a fatal PHP error
Why does this code have high cyclomatic complexity - or is it a bug in PHPMD in Jenkins?
TCP connect by using socket return false results
Why does Symfony still log to a dev.log file, even when I didn't define it in a loghandler?
PHP - Display cURL Verbose info
Errors not written to Apache error log
Zend Framework composer autoload
Relationship method must return an object of type Illuminate\Database\Eloquent\Relations\Relation from model call by not view in Laravel 4
Generate batch number in mysql?
Jasny multiple file upload with other form elements
ZF2 Zend\Log + Doctrine2
pdo_oci make does not work
Fetch email using message id with php imap?
Yii PHP framework tutorials [duplicate]
How to send video files as json data. (Not the file name or path but content) to Android

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!