Support

Admin Tools

#40295 403 On Front With JoomShaper's Helix Ultimate "Coming Soon" Template Switch

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
5.0.2
PHP version
8.1.27
Admin Tools version
Pro 7.4.8

Latest post by Accredited Design on Wednesday, 28 February 2024 10:30 CST

Wednesday, 14 February 2024 12:24 CST

Accredited Design

Hello, I use JoomShaper's "Helix Ultimate" template on many sites. I have Admin Tools WAF Cloaking options as "Yes" for Block tmpl=foo system template switch, Block template=foo site template switch and Enable 404 Shield. It's set to, "No" for Allow site templates. Helix Ultimate has a "Coming Soon" option which is connected to Joomla's offline mode and replaces that page. When Joomla's site offline is enabled, it generates the URL: example.com/index.php?templateStyle=180&tmpl=comingsoon on the front when visited. I'm getting a 403 when visiting it. I've confirmed that the block is coming from Admin Tools because the Blocked Request Log shows my IP and the reason is, "tmpl= in URL". When I turn off BOTH Block tmpl=foo system template switch and Block template=foo site template switch the 403 goes away, but I'd rather not turn these off. I've attempted to add, "comingsoon" to the List of allowed tmpl= keywords, but it still presents a 403. I've also tried setting Allow site templates to Yes, and still a 403.

Any ideas how allow Helix Ultimate's "comingsoon" template switch?

Thanks!

Wednesday, 14 February 2024 14:58 CST

nicholas

Components, Admin Tools, Web Application Firewall, Configure WAF.

Click on the Cloaking tab.

Click in an empty area inside "List of allowed tmpl= keywords"

Type comingsoon and press Enter to add a new item.

On the same page, set "Allow site templates" to Yes.

Click on the Save button in the toolbar.

For more information read https://www.akeeba.com/documentation/admin-tools-joomla/web-application-firewall.html#waf-configure-visual-fingerprinting under "Block tmpl=foo system template switch" and "List of allowed tmpl= keywords".

Please note that 404Shield has nothing to do with your use case.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 28 February 2024 10:30 CST

Accredited Design

Thank you, Nicholas!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!