Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.
Latest post by nicholas on Monday, 20 March 2023 02:06 CDT
Hi, on my site I have some html pages structured with frames, a frame calls a page in my hosting, another calls an external address. The one calling the external address turns out to be white. I think it's a crash due to Admin Tools. Can you tell me how to unblock the page? Thank you
https://tecnoinfissi.biz/frame/adielle.html
Have you tried turning off βProtect against clickjackingβ in the .htaccess Maker and regenerate the .htaccess file?
Nicholas K. Dionysopoulos
Lead Developer and Director
π¬π·Greek: native π¬π§English: excellent π«π·French: basic β’ π My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
yes see the attached file
If you replace the contents of the .htaccess file with those from the htaccess.txt shipped with Joomla and no other changes to your site does the problem go away?
Nicholas K. Dionysopoulos
Lead Developer and Director
π¬π·Greek: native π¬π§English: excellent π«π·French: basic β’ π My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
I tried to replace the .htaccess file with htaccess.txt renaming it to .htaccess but there was no change
This means that your problem does not come from Admin Tools' .htaccess Maker.
Moreover, Admin Tools' Web Application Firewall does not have any feature which could get in the way. You can verify that by first going to Components, Admin Tools, Web Application Firewall, Configure WAF, set Defend against plugin deactivation to No. Then go to Extensions, Plugins and unpublish the System - Admin Tools plugin. You will see that your problem still occurs.
If you give me the URL of a page where this happens I might be able to point you to the right direction. The only thing I can think off the top of my head is that a third party plugin is setting the Content-Security-Policy, but it's equally likely that you are misdiagnosing your problem and the issue is something with the IFRAME itself.
Nicholas K. Dionysopoulos
Lead Developer and Director
π¬π·Greek: native π¬π§English: excellent π«π·French: basic β’ π My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
Thanks for your assistance, I found the problem, I corrected the protocol in the url putting https:// instead of http://
Ah, that would definitely do it.
In the past, browsers would show a popup with a mixed content warning. These days you just get a blank IFRAME and an error in the browser's JavaScript console about the insecure content not being allowed to be displayed.
Nicholas K. Dionysopoulos
Lead Developer and Director
π¬π·Greek: native π¬π§English: excellent π«π·French: basic β’ π My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.
Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!