.htaccess prevents using FCKeditor in 1.3.9a

Printable View

20 Apr 2010, 01:55 PM
frank18

.htaccess prevents using FCKeditor in 1.3.9a

Upgraded from 1.3.8a to 1.3.9a

Zen Cart 1.3.9a
Database Patch Level: 1.3.9a
HTTP Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Server OS: Linux 2.6.18-164.10.1.el5xen
PHP Version: 5.2.13 (Zend: 2.2.0)

Problem:

Unable to use FCKeditor in 1.3.9a, returns 403 Forbidden

Solution:

Edit STORE/editors/.htaccess from this

Quote:

# but now allow just *certain* necessary files:
<FilesMatch ".*\.(js|css|jpg|gif|png|html)$">
Order Allow,Deny
Allow from all
</FilesMatch>

to this

Quote:

# but now allow just *certain* necessary files:
<FilesMatch ".*\.(js|css|jpg|gif|png|xml|html)$">
Order Allow,Deny
Allow from all
</FilesMatch>

and editor becomes accessible and functional

In case this change creates a security issue an alternative solution should be found.

Frank
21 Apr 2010, 10:14 AM
BlessIsaacola

1.3.9A Breaks FCKEditor?

I am currently getting a 403 error when accessing product page on the admin side using fckeditor 2.6.4.1. This issue started after upgrading to 1.3.9a.

I am sure it has something to do with the .htaccess that was uploaded to the editor folder from 1.3.9a (this is a new file). If I delete the .htaccess file from the editor folder then everything works fine with regards to fckeditor.

I looked inside the new .htaccess file and there instruction of what to include in httpd.conf file. This file is generated by the server and I am not sure if the lines below are correct or not. Can you some please help me troubleshoot this issue. I'd prefer to be able to us fckeditor.

Code:

<Directory "/"> Options ExecCGI FollowSymLinks Includes IncludesNOEXEC -Indexes -MultiViews SymLinksIfOwnerMatch AllowOverride All </Directory> <Directory "/usr/local/apache/htdocs"> Options Includes Indexes FollowSymLinks AllowOverride None Order allow,deny Allow from all </Directory>

The above is the section from current httpd.conf file.

Thanks!
21 Apr 2010, 10:36 AM
jynxy

Re: 1.3.9A Breaks FCKEditor?

Try changing .htaccess inside the folder editors by adding |xml as shown:

Code:

# but now allow just *certain* necessary files: <FilesMatch ".*\.(js|css|jpg|gif|png|html|xml)$">
21 Apr 2010, 10:43 AM
BlessIsaacola

Re: 1.3.9A Breaks FCKEditor?

Thank you! You're a genius! That solved my problem.
24 Apr 2010, 09:36 AM
DrByte

Re: 1.3.9A Breaks FCKEditor?

FYI: You may find that the more contemporary CKEditor is a more preferred choice: http://www.zen-cart.com/index.php?ma...oducts_id=1626
It also doesn't require any .htaccess edits to work.