Support

Admin Tools

#40407 Backend redirects to front end

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
8.0
Admin Tools version
n/a

Latest post by nicholas on Monday, 15 April 2024 02:57 CDT

Thursday, 07 March 2024 07:31 CST

uzbaby

Hello, dear Akeeba!

I could not answer my Joomla version and Akeeba Tool version because I cannot login to my Admin panel.

My backend redirects me to front end.

Please any help or suggestions to solve the problem?

Thursday, 07 March 2024 07:53 CST

nicholas

Follow the instruction in https://www.akeeba.com/documentation/admin-tools-joomla/atwafissues.html 

Please note that you have enabled the Administrator Secret URL Parameter. You need to provide the secret URL parameter to see the admin login page.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 07 March 2024 23:28 CST

uzbaby

Dear Nicholas,

Thank you very much for reply.

As provided in your link I made step 1(add disable word to provider.php) and step 2(unblocked my IP in joomla components Akeeba.)

Thank you very much. But was the reason to blocking me? 

 

Friday, 08 March 2024 00:59 CST

nicholas

I told you that in the second part of my reply:

Please note that you have enabled the Administrator Secret URL Parameter. You need to provide the secret URL parameter to see the admin login page.

Please read https://www.akeeba.com/documentation/admin-tools-joomla/web-application-firewall.html#waf-configure-basic-protection under "Administrator secret URL parameter".

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 08 March 2024 01:51 CST

uzbaby

I have this kind of secret URL paramentr. But I don't remember if I set it, maybe you set it when you worked with my site last time...

Friday, 08 March 2024 01:59 CST

nicholas

I am never making any modifications to client sites unless they are pertinent to resolving your issue or are explicitly requested by the client. Neither was true for your site. Moreover, if we had told you to set up an admin URL parameter we wouldn't have used the blatantly obvious one (your site's name, same as your username), but something randomly generated.

This means that you either entered this yourself, or your browser or password manager auto-filled it for you. I suspect this might be your username on the site. Yeah, password managers and browsers do that, and there's not anything we can do to stop it anymore. Browsers have stopped allowing developers to prevent auto-fill of usernames and passwords. 

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 08 March 2024 03:17 CST

uzbaby

Oh, I would be happy if you will make any changes in my site. Because all that you did before to help me with settings were always great things.

 

I think I understand the explanation in the provided link.

Thank you very much! 

Friday, 08 March 2024 03:46 CST

nicholas

You're welcome! Have a wonderful day :)

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Thursday, 28 March 2024 20:12 CDT

uzbaby

Hello

Again the same problem.

I did not use administrator panel for several days and now I cannot enter it again.

 

Why so? And what should I do?

Can we make so this would not happen again?

Friday, 29 March 2024 02:32 CDT

nicholas

Please read https://www.akeeba.com/documentation/admin-tools-joomla/web-application-firewall.html#waf-configure-basic-protection under "Administrator secret URL parameter".

Let's say you use the secret URL parameter foobar and your site is https://www.example.com. This means that you need to access your administrator as https://www.example.com/administrator/index.php?foobar to be allowed to login.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Friday, 29 March 2024 07:42 CDT

uzbaby

I don't remember that secret URL parametr. Why I cannot just enter my admin without secret words. I tried to access via http://www.example.com/administrator/index.php?admintools_rescue=[email protected]...

but it goes to front end again.

Friday, 29 March 2024 08:19 CDT

nicholas

Follow the instruction in https://www.akeeba.com/documentation/admin-tools-joomla/atwafissues.html as I told you on March 7th.

These instructions also tell you to go to the Configure WAF page to change the administrator secret URL parameter.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Saturday, 06 April 2024 09:26 CDT

uzbaby

Can I enter my site without secret URL parameter? I unblocked my IP, and I see that my secret URL parameter is the same as I used. But when I used that secret parameter it took me to the front end. And today when I unblocked my IP, no I can enter with that secret URL.

 

I don't want to use that secret URL. Can I? I just want to enter my site with administrator link as before

Sunday, 07 April 2024 06:59 CDT

nicholas

Please do read the link I gave you twice already: https://www.akeeba.com/documentation/admin-tools-joomla/atwafissues.html It does answer your questions. Your latest question is answered under the "Browser cookie override for the administrator secret URL parameter" heading.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Sunday, 14 April 2024 20:05 CDT

uzbaby

Hi! I went through the link you provided till here: Go to Web Application Firewall and click the Exceptions Log button. Delete all records with your own IP address. Then, go back to Web Application Firewall and click on the Auto IP Blocking Administration button. Select the record showing your IP address and click on the Delete button to delete the block.

I cannot find the EXCEPTIONS LOG button. You can see the screenshot.

 

 

Monday, 15 April 2024 02:57 CDT

nicholas

Blocked Requests Log

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!