1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

XF 1.3 nginx 403 forbidden issue with some urls

Discussion in 'Troubleshooting and Problems' started by BamaStangGuy, Feb 4, 2014.

  1. BamaStangGuy

    BamaStangGuy Well-Known Member

    Can someone shed some light on why some member profile pages are showing a 403 forbidden and some are not?

    This shows a 403 forbidden (also shows this using the Google Webmasters Fetch URL tool
    Code:
    curl -I http://www.aspiescentral.com/members/droopy.1/
    
    HTTP/1.1 403 Forbidden
    
    Server: nginx centminmod
    
    Date: Tue, 04 Feb 2014 22:45:00 GMT
    
    Content-Type: text/html; charset=UTF-8
    
    Content-Length: 22767
    
    Connection: keep-alive
    
    Vary: Accept-Encoding
    
    Expires: Thu, 19 Nov 1981 08:52:00 GMT
    
    Cache-control: private, max-age=0
    
    Set-Cookie: xf_session=be72ad04cdc2e1b5efa32961cfb137a5; path=/; httponly
    
    X-Frame-Options: SAMEORIGIN
    
    Last-Modified: Tue, 04 Feb 2014 22:45:00 GMT
    
    However, this one does not:

    Code:
    
    curl -I http://www.aspiescentral.com/members/brent.2819/
    
    HTTP/1.1 200 OK
    
    Server: nginx centminmod
    
    Date: Tue, 04 Feb 2014 22:46:39 GMT
    
    Content-Type: text/html; charset=UTF-8
    
    Content-Length: 35241
    
    Connection: keep-alive
    
    Vary: Accept-Encoding
    
    Expires: Thu, 19 Nov 1981 08:52:00 GMT
    
    Cache-control: private, max-age=0
    
    Set-Cookie: xf_session=c7611bd5ecdc3b0d55fae2db0fc3961d; path=/; httponly
    
    X-Frame-Options: SAMEORIGIN
    
    Last-Modified: Tue, 04 Feb 2014 22:46:39 GMT
    
     
  2. Chris D

    Chris D XenForo Developer Staff Member

    The first one, viewing as a guest, gives the message:
    "This member limits who may view their full profile."

    The second one has no limits and is fully visible.

    The 403 error code is appropriate for something where the normal access is restricted. Be it unauthorised, privacy etc.
     
    Liam W likes this.
  3. BamaStangGuy

    BamaStangGuy Well-Known Member

    Thanks, that makes sense. Didn't realize it was limited.
     

Share This Page