Support

 Hi,

I'm using Themler template creator and when I click on " Edit Template ", a popup opens and I get this message in it:

Forbidden: You don't have permission to access /templates/untitled/app/index.php on this server.

I tried to follow your instructions in this ticket: #21894 – Admin Tools blocking Themler Template creator but it didn't work because I get no entry in the security log.

Can you help me on this one?

Thanks in advanced.

Go ahead and add the "untitled" keyword as we did in #21894. That may fix it.

The lack of an entry in the exceptions log may suggest that it is an .htaccess problem. A 403 caused by .htaccess wouldn't be logged. In .htaccess Maker, you can add /untitled in the template field.

If neither of those work, we need to do a little more digging. First, replace your .htaccess file with the htaccess.txt file in the root of your site. That is Joomla!'s standard .htaccess file that we use as a "known good" file. If the problem goes away, then we know it is an .htaccess problem.

Next, disable the System - Admin Tools plugin. If the problem goes away then we know the problem is in WAF.

Did all that you said and I still haven't permission to access /templates/untitled/app/index.php

I've noticed in the Permissions Configuration that the /templates/untitled/app/index.php file is set to 644 as all other tiles. Could that be the problem? If yes, to what should I set it?

HA! I changed the .htaccess to htaccess_old.txt and used the default htaccess like you suggested and it works!

So, it's a .htacces problem... what do I do next?

EDIT: I've noticed in Akeeba's .htaccess maker at the section " Allow direct access, including .php files, to these directories " that it's written " templates/your_template_name_here "...

Should I change it to " templates/untitled " ?

EDIT 2: OK, I did change it to " templates/untitled " and now I have access to the template builder... but I have a 403 error in it that says that Admin Tools blocks it. So I added the " untitled " to the List of allowed tmpl= keywords field and checked the security log. This it what I get, even if I added "untitled":

http://the-site-name.com/index.php?option=com_content&view=featured&Itemid=101&lang=fr&template=untitled&is_preview=on&uid=426

You did exactly the right thing with the .htaccess file.

With the message that "Admin Tools did it" we know this problem is the Web Application Firewall.

Please double check your allowed keyword, uppercase/lowercase, spelling, etc.

Next, set Allow Site Templates to Yes. If that doesn't work, you may have to set Block template=foo site template switch ti No. That leaves a small chink in your armor, but it will let the template maker work.

YES! By setting Allow Site Templates to Yes, all is good!

Thank you very much for your help Dale.

Case solved!

You're welcome! Have a good weekend.