Support

Admin Tools

#28591 ES too many redirects

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by on Thursday, 09 November 2017 17:17 CST

Monday, 09 October 2017 17:12 CDT

XpertAssist
Akeeba,

I have a site with Admin Tools and Stack Ideas Easy Social (ES) on it. The latest version of each.

Easy Social sends an e-mail when a user has a Friend Request or Join Group Request. The e-mail has a button in it to take the user to their account on ES to view the request.

Friend Request: https://saverhealth.com/co-op-personal/coop-profile/507-docdemo
Accept Join Group: https://saverhealth.com/coop-groups?controller=groups&task=approve&userId=733&id=18&key=f6edbe6aa9e3419eae3eb5a491ddd980

When you select the link you get the error condition "ERR_TOO_MANY_REDIRECTS"

Because the user is not logged into ES, I think the application is trying to redirect it to the logon page.

I want to check if Admin Tools is blocking the redirects, but tried to Disabled the System-Admin Tools plugin to verify, but I get ACCESS DENIED. I thought i used to be able to do this?

I check Web Application Firewall and I'm not getting a Security Exception.

I expect that .htaccess file could be restricting the Redirect?
How can I verify?
Is there a setting in htaccess builder?

Thanks for the help.
Dan

Tuesday, 10 October 2017 00:45 CDT

nicholas
I check Web Application Firewall and I'm not getting a Security Exception.


This means that anything you set in the Admin Tools component and plugin (possibly barring the .htaccess Maker) cannot be involved.

I expect that .htaccess file could be restricting the Redirect?

How can I verify?


No, it cannot. It would block the entire request with 403 Forbidden. Instead, you either get a constant redirection back to the same URL (which means something between Easy Social and your site's menu structure is not quite right) or an Access Denied which is a Joomla! error. Since both the redirects and the Access Denied come from Joomla! this is not a .htaccess issue.

At this point you have disproved any connection between this issue and Admin Tools. It looks like something you'd need to ask Stack Ideas about.

Side note: If you are trying to use the same URL many times I expect that at some point you'll start receiving get Access Denied. Why? Because I suspect the key is either single use or has an expiration limit. Otherwise an old link could be used years later to backdoor into someone's account. This is fundamental security and I expect that Stack Ideas, being a demonstrably responsible software company, has taken into account. Therefore I think your issue is that the URL does work but leads into a redirect loop which is either a bug in the component or something in the way you've set up menu items. I've had that kind of fun with our own frontend software (Akeeba Release System mostly) used on our site: an unfortunate menu hierarchy would cause a redirect loop. Fixing the SEF router that caused the loop broke downloads so we had to change our menu structure and make liberal use of aliases.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 09 November 2017 17:17 CST

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.
Edited by on 2017-11-09 17:17 CST

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!