Okay, here's what I did before I posted yesterday:
1) I'm running Lucee as root to ensure it's not a CFML file permission issue
2) I've verified there are no file read errors in the apache error log
3) I've tested all versions of Taffy from 2.0 up to 3, and only 3 returns the 403 error (restarting lucee to clear in-memory cache after each version upgrade)
4) I've verified that simple CFM documents render fine with an empty App.cfc
5) I get an error with Taffy 3 as soon as I add the <cfcomponent extends="taffy.core.api"> to App.cfc (with nothing but the closing tag)
6) I've changed the two 403 error responses I found in the api.cfc file to 404's, and still get a 403's.
With the above I'm fairly certain the 403 is coming from Taffy, but I'm not sure where to look at this point without combing through the code, adding stops, etc. Maybe that's what I need to do though. I was just hoping for some quick direction if anyone had encountered this before or perhaps knew of a good place to start looking.
I'll keep at it today and let you know if I find anything conclusive.
-Jordan
----- Original Message -----
From: "Adam Tuttle" <
ad...@fusiongrokker.com>
To:
taffy...@googlegroups.com
Sent: Thursday, February 26, 2015 7:16:40 AM
Subject: Re: 403 Forbidden with Taffy 3.0
I don't think I've seen anyone having that problem.
1. Start by verifying that this is a 403 from Taffy, and not from your
webserver config/etc. If you include the reload url param, that should
initiate a reload, which will cause the X-TAFFY-RELOADED: TRUE header to be
returned. That's what we want to see... if you don't see it, the issue is
before Taffy is ever involved.
2. Look for everywhere in core/api.cfc that could return a 403 (just
search for "403") and start doing dump-based debugging.
If you find anything that seems wrong or weird, let us know!
Adam
On Wed, Feb 25, 2015 at 7:43 PM, Jordan Michaels <
jor...@viviotech.net>
wrote:
> I'm installing Taffy 3.0 on a Lucee/CentOS/Apache2.2 server and I'm
> getting a "403 Forbidden" error when I attempt to access the Taffy
> dashboard. Using 2.2.4 version of Taffy works just fine.
>
> I am using the generic framework variables as provided in the "api"
> example in the example directory. I've tried setting the "disableDashboard"
> variable to "false" but it had no effect.
>
> Has anyone else experienced this issue? Any suggestions on some setting I
> might have overlooked?
>
> --
> Warm Regards,
> Jordan Michaels
>
> --
> You received this message because you are subscribed to the Google Groups
> "Taffy Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to
taffy-users...@googlegroups.com.
--
You received this message because you are subscribed to the Google Groups "Taffy Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
taffy-users...@googlegroups.com.