I'm building out a new Drupal 9 site and have ran into a weird issue where I can not view any user profile page anonymously. I get a 403 error on the page and the only thing it spits out is "You are not authorized to access this page."
All of this people are active and not blocked. I thought it could be an issue with layout builder but it doesn't make a difference. I haven't had this issue with any content types, just user profiles.
The site is running on a bootstrap theme and is hosted via Pantheon. Here's what spits out the message when viewing a profile page anonymously:
<div class="region region-content">
<div data-drupal-messages-fallback="" class="hidden"></div>
<!-- THEME DEBUG -->
<!-- THEME HOOK: 'block' -->
<!-- FILE NAME SUGGESTIONS:
* block--mainpagecontent.html.twig
* block--system-main-block.html.twig
x block--system.html.twig
* block.html.twig
-->
<!-- BEGIN OUTPUT from 'themes/composer/bootstrap/templates/block/block--system.html.twig' -->
You are not authorized to access this page.
<!-- END OUTPUT from 'themes/composer/bootstrap/templates/block/block--system.html.twig' -->
</div>
</div>
Any ideas as to what would be causing this issue?
For a anonymous user to be able to see user profile pages you need to grant that permission.
Go to
/admin/people/permissions
Under “User -> View user information” grant the necessary permission.
Now, think twice.
It might be a very bad idea to grant this kind of permission.
Consider all the impacts on security and privacy among others.
Related
Is there a way to show a custom html page or redirect a user when storage throws errors like if file is not available, not sufficient permissions or in case of any other issues when the file can't be accessed/displayed?
So instead of the below
We need to show a custom page with our brand designs.
What are the options here?
No, there is not. You are using an API endpoint (download URL) meant for programmatic consumption or inline page insertion, not for loading into a browser to present a full web page.
I want to Share the AppDynamic's Dashboards in an external website under an <iframe> so that the reports(statistics) can be visible without logging into the AppDynamic tool on an external website.
Requirements :
Need to get the Dashboard's Public URL (so that it can work under iframe without asking the login ID/pass )
I tried doing this "Sharing a Custom Dashboard"
By clicking the "copy shared URL" I got the AppDynamics' particular dashboard's URL
Whenever I run that URL on Chrome, it gives the following error :
Uncaught Error: Load timeout for modules: shared/SharedModuleCode
http://requirejs.org/docs/errors.html#timeout
and when I try on IE (Internet Explorer) , it throws this error :
Content was blocked because it was not signed by a valid security certificate.
For more information, see “About Certificate Errors” in Internet Explorer Help."
On Other tools like Splunk and Sitecatalyst there is a concept of Sharing the reports by embedded URLs. Not sure how AppDynamic works
Thanks.
I am not exactly sure what the problem is, but I just tried it with AppDynamics Controller Version 4.2 to share a custom dashboard and open the shared Link in a different browser and I didn't need to put in any credentials. Maybe AppDynamics Version 3.9 had a bug (assuming you used version 3.9 according to the docs link you posted)
Here is what I did:
Toolbar --> Dashboard & Reports --> Chose a dashboard --> Switch to edit mode -->
Actions --> Share Dashboard --> Action (again) --> Open Shared URL in new window -->
Make Browser full screen
I use Wirdoress. Today when I open the pages content I see that it contains <div id="__tbSetup"> </div>
From where this code come from. Also some of the pages contain
<p>
<script type="text/javascript" src="http://cdncache3-a.akamaihd.net/loaders/1032/l.js?aoi=1311798366&pid=1032&zoneid=62862"></script><br />
<br />
<script type="text/javascript" src="https://secure-content-delivery.com/data.js.php?i={4DCEEE00-436F-4341-AA82-349B2C73F9D8}&d=2013-5-4&s=http://mydomain.com/wp-admin/post-new.php?post_type=page"></script></p>
<script type="text/javascript" src="https://secure-content-delivery.com/data.js.php?i={4DCEEE00-436F-4341-AA82-349B2C73F9D8}&d=2013-5-4&s=http://mydomain.com/wp-admin/post-new.php?post_type=page"></script></p>
The above script is a functionality of an adware, which appends the above URL
(secure-content-delivery.com/something/URL-you-are-on-right-now, which in this case is a new post page or wordpress)
to every post you make, or automatically to all the places. One of the things that is known to cause this is the Text Enhance extension, which is also a known adware.
The most possible causes of this is, whether your computer is infected, and when you have logged in to your wordpress, it also infected your wordpress setup. Or the hosting provider you've chosen is infected. Please remove all the instances, and have a security checkup of your system, and your hosting provider as well. Or better change the hosting plan if you're using a shared one.
Those scripts are not added in a default install of WordPress. Disable your plugins one by one, refreshing the page and viewing the source each time until the scripts go away. When they do, the last plugin you disabled is the culprit.
I am in the process of fine-tuning a Diazo theme. The server we are developing the site on contains multiple Plone sites, at the root of this server I have a user account which enables me manager access to each sub-site without having to create a user account for myself each time I create a new Plone site.
I am experiencing a problem in which when I log into the site I am developing (running the theme in question) - it executes all the rules fine, but if I make a standard user on this development site and log in.. The rules do not execute. I am basing the 'logged in' rule on the existance of the #user-name element which only appears after a user is logged into the site, I can confirm this element exists on the page both when I log in as the standard user, or my administrator account.
Rules:
<rules css:if-content="#user-name">
<prepend theme="/html/head" content="/html/head/link"/>
<append theme="/html/head" content="/html/head/script"/>
<append theme="/html/head">
<link href="/eatonbray/++theme++eatonbray/style/editing.css" type="text/css"
rel="stylesheet" />
</append>
<replace css:theme-children="#main-content" css:content="#portal-column-content"/>
<drop css:content="#portal-column-content" attributes="class"/>
</rules>
Does anyone know why they do not execute for a normal user account, even though the element exists?
Refreshing the correct site is the answer to this, there is nothing wrong with the rules above.
I am creating a SharePoint public website on SharePoint Server 2007.
I've added my custom Master-page for Publishing site.
When I see, Home page, on my local machine, in the content area of my page it shows me IMAGE on the right as I want to see.
But, When I see that page on my remote machine It shows my IMAGE on the left, instead of right side.
I'm using following layout:
<div id="Content">
<div id="left">
</div>
<div id="right">
**--->>>I've IMAGE over here..!!!!**
</div>
</div>
Can Anyone help me how to resolve this problem.
Thanks.
Without more information it's hard to tell what's your problem, but here is a couple of common issues:
Non approved versions of files. But if you're logging in as the same user then that's not the problem
Cached css. If your browser has ever retrieved an old version of the css (and you haven't renamed that) then it'll have the old version cached. CTRL+F5 will solve the problem if that's the case. But then all your users will have to do that if they got the old version cached.