Results 1 to 7 of 7
  1. #1
    Join Date
    Oct 2004
    Posts
    25
    Plugin Contributions
    0

    Default Admin Page in text only view

    Why did my admin page disapear or change from a friendly html view, to text and text links? I can't really give anyone access to SEE with I don't see, but this makes it hard for me to work inside the admin panel.

    So... I backed up my /admin/includes/configure.php file, copied the entire 'admin' directory from a fresh download of the most current version (which is what I was running) and then copied my configure file back into /admin/includes and figured I was golden, but nope, no change.

    Any ideas?

    Mike

  2. #2
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Admin Page in text only view

    Sounds like your stylesheet is busted, blocked, or missing.
    Try renaming the /admin/includes/.htaccess to htaccess.txt .... does that help? If so, you'll want another method for securing your admin area instead of the .htaccess settings.
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  3. #3
    Join Date
    Oct 2004
    Posts
    25
    Plugin Contributions
    0

    Default Re: Admin Page in text only view

    Quote Originally Posted by DrByte
    Sounds like your stylesheet is busted, blocked, or missing.
    Try renaming the /admin/includes/.htaccess to htaccess.txt .... does that help? If so, you'll want another method for securing your admin area instead of the .htaccess settings.
    Yes.. that did the trick, however I changed it back until I can figure out what other method of securing the admin area is available? Linux server, apache webserver. Ideas?

  4. #4
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Admin Page in text only view

    Talk to your host and ask them why those settings are causing a total block even on .css files and not just .php files like they're set to. It's likely a restriction in the way they've configured what you're allowed to do with .htaccess files at "your" level (vs "theirs").
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  5. #5
    Join Date
    Oct 2004
    Posts
    25
    Plugin Contributions
    0

    Default Re: Admin Page in text only view

    Quote Originally Posted by DrByte
    Talk to your host and ask them why those settings are causing a total block even on .css files and not just .php files like they're set to. It's likely a restriction in the way they've configured what you're allowed to do with .htaccess files at "your" level (vs "theirs").
    Well.. the 'host' is me. Server is in my basement.

    .htaccess history: I couldn't get the buttons to display graphics. I've posted a few times on this issue, and Vger said to change /includes/.htaccess to /includes/htaccess.txt, which I did. I followed that by deleting .htaccess. Voila'... I now have graphics on my buttons. I had worked on that for over a month, couldn't figure that one out.

    So.. I'm worried about security, and I go back to the /includes directory and change htaccess.txt back to .htaccess (replacing the missing file) as I was testing how much of a hole I opened up. Once I did that, the button graphics disappeared again. I changed it back once again to htaccess.txt and deleted .htaccess. When I returned to my admin page, I only had text links.

    So, I posted this thread. If I go to /admin/includes/ and rename .htaccess to htaccess.txt as you suggested, and delete .htaccess, I again have an html version of the text page. Reversing the process again, putting .htaccess back in place, and I'm back to text links on the admin page.

    Now.. DrByte, I figure you are the best possible chance I have for a solution. Your DrByte name is in both htaccess files, dated 2006-02-09. Can you see a solution to this?

    Two different .htaccess files, that limit the graphic on buttons, and the html on admin. What gives?

    Mike

  6. #6
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Admin Page in text only view

    I'm no expert on how to configure the server's allowable directives, but it would seem that your httpd.conf settings are preventing these settings from working as intended:
    Code:
    <Files *.php>
    Order Deny,Allow
    Deny from all
    Allow from localhost
    </Files>
    That collection of settings says "for all *.php files, deny access to everyone, unless it's the local server itself asking for them".
    Basically, that prevents outsiders from hacking around at files on your server without your knowledge.
    For some reason, it's grabbing more than just *.php ... and also denying access to your .css files too.

    It only happens this way in a few environments. Windows IIS Hosting environments don't like .htaccess files at all, and different methods must be used to accomplish the same thing. If you're having this problem in a linux/unix apache environment, then "something" in your httpd.conf or a config file linked by your httpd.conf is telling apache that those commands aren't allowed, or is telling it to interpret them differently than they are intended. About 1-10% of linux/unix hosting arrangements have this problem.

    Perhaps some searching on .htaccess and deny from all and <files *.php> over at webhostingtalk.com might help you configure your server more completely?
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

  7. #7
    Join Date
    Jan 2004
    Posts
    66,364
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Admin Page in text only view

    Quote Originally Posted by spitfireguy
    Your DrByte name is in both htaccess files, dated 2006-02-09.
    That's just cuz I was the last one to touch them while preparing for release of a new version...

    Unfortunately, it gives me no claim to the brilliance contained therein. (Doesn't mean I didn't bust anything though ! )
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.

 

 

Similar Threads

  1. how can I store extra product-info for admin-only view?
    By davebeing in forum Setting Up Categories, Products, Attributes
    Replies: 3
    Last Post: 17 Aug 2011, 04:38 PM
  2. Sidebox header images overlap only on 'View Cart' page
    By melmanz in forum General Questions
    Replies: 3
    Last Post: 27 Feb 2011, 12:47 PM
  3. set up view only member page (document/video/picture)
    By akidworld in forum General Questions
    Replies: 0
    Last Post: 3 Jul 2008, 04:58 AM
  4. Forcing customer to log in to view only one category/page
    By mmorpgwarehouse in forum General Questions
    Replies: 1
    Last Post: 12 Mar 2007, 05:40 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR