Support

Admin Tools

#34437 Error when trying to edit Home Page in Front End - 403 This request is blocked by Admin Tools. (DFIShield)

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by on Saturday, 27 February 2021 20:17 CST

Thursday, 28 January 2021 02:52 CST

akcreation

Hi guys, I have started getting the following error message, when logged into the FRONT END of my website, and only when I click to try and edit the Home Page article, which is built using my page builder (Yootheme Pro).

403 - This request is blocked by Admin Tools (followed by a load of generic stuff)

So I went into the back end, into Components > Admin Tools > Web Application Firewall > Blocked Request Log and I can see it shows the following:

My IP Address
Reason = DFIShield
Target = https://my-domain-name/index.php?option=com_ajax&template=yootheme&p=customizer&section=builder&format=html&site=%2F&return=https%3A%2F%2Fmy-domain-name%2F%3Fview%3Dform%26layout%3Dedit%26a_id%3D404%26return%3DaHR0cHM6Ly8xLnNlY3VyZS10ZXN0c2l0ZS5jby51ay8%3D

(I changed the URL in the target URL to say 'my-domain-name' as I wasn't sure if this ticket will be shown publicly)

Please can you advise what the problem is and how to fix it? This only seems to have just started happening, I'm due to launch this site in the next few days and I can't now as my clients are unable to edit their home page because of it. (Also just to clarify, this is only happening on the home page, all other articles seem to be fine to edit with the page builder on the front end - very strange.

Thanks so much for your help guys :)

Keith

Thursday, 28 January 2021 04:12 CST

tampe125

Hello,

the problem is caused by the return section in the URL. It uses a plain URL, instead of using base64 encoding, as Joomla normally does. This triggers Admin Tools protection, blocking the request.

You can add a WAF Exception inside Admin Tools, please use the value com_ajax in the component field and in the query field put the word template.

That should fix your issue.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Saturday, 27 February 2021 20:17 CST

System Task
system
This ticket has been automatically closed. All tickets which have been inactive for a long time are automatically closed. If you believe that this ticket was closed in error, please contact us.
Edited by on 2021-02-27 20:17 CST

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!