So I just wanted to see a website I created with Wordpress and I got this message :
Authorization Required
This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.
It used to work just fine and I haven't changed a single thing. A pop-up window asks for a username/password and the one I use to access WP configuration does not work. Any idea?? I'm pretty scared I got hacked or something.
Delete the .htaccess file and save permalink again.
If you havent changed anything, probably this is a problem from the host. Send them a ticket or use live chat.
Related
I have a huge problem where absolutely no error is returned from google nor php.
I've written a google client oauth2 connect model, which is perfectly working when I'm running it on my dev environment on my mac (I'm not using a simple localhost, it's actually vagrant what I'm using to mirror the production server as much as possible) but it doesn't work when I push it to production.
It's just simply not returning any error. The code reaches the part where I have the auth code from Google and it hangs at the part where I'm trying to exchange it for a token ( $client->authenticate($auth_code) ).
I really don't know what am I doing wrong, since everything is working perfect without errors on dev site (which has a public link by the way, and I tried accessing it from different public IP addresses).
The moment I push the code to a live server, it just stops authenticating. I have the correct oauth credentials set up for every production server, redirect uri is correct. I simply don't know what am I doing wrong...
Here's a part of code (I repeat, it perfectly works on dev server with publicly accessible url):
$this->client = new Google_Client();
$this->credentials_path . '/client_secret.json'
$this->client->setAuthConfigFile($this->credentials_path . '/client_secret.json');
$this->client->setAccessType('offline');
$this->client->setRedirectUri($this->redirect_uri);
$this->client->addScope(Google_Service_Drive::DRIVE_READONLY);
$this->client->authenticate($auth_code); //this is the part where the code hangs on a live server, but works perfectly on dev
$this->token = json_encode($this->client->getAccessToken());
$this->client->setAccessToken($this->token);
$this->writeTokenToFile($this->token);
if ($this->client->isAccessTokenExpired()) {
$this->client->refreshToken($this->token);
}
$google_drive_service = new Google_Service_Drive($this->client);
Any help would be very much appreciated!
AFAIK, you need to revoke the existing token before requesting another.
As mentioned in Offline access, when you set the API client's access type to offline, the client object will refresh the access token as needed.
With that, you need to revoke access given to an application. As mentioned,
part of the removal process can include an API request to ensure the permissions granted to the application are removed.
You may want to try revoking a token by calling revokeToken():
$client->revokeToken();
You may want to also check given solutions in the following SO posts:
Automatically refresh token using google drive api with php script.
Not receiving Google OAuth refresh token
Hope that helps!
I get 403 access_denied_insufficient_permissions error when trying to access a file present on box enterprise admin account.
We use the "as-user" header to access files of any user on the enterprise. In our case, bob#acme.com is the admin user and he gave access to my box application the permission to access any files. If I try to access files on bob's account using "As-user" or "On-behalf-of: bob#acme.com" header, I get access denied error. If I do not use this header, I am able to access the documents. I don't think this is a valid work around for this issue as we do not know at run-time if a user is admin or a regular user. Have any of you run into this issue?
Box recently made a change in their Oauth token scopes. Every app now carries an additional setting to allow the app to have scope level of managing the enterprise. You need to enable that on your app and then see what happens. It should work, I think.
We faced the same issues a few days back and due the above suggested change worked for us. Here is the announcement from box.
I have this issue as well. What you can do is to ask the Box API to get the current user and compare that userId to the one you are going to be running as. If they differ, add As-user header, otherwise don't.
It does require one extra API call (getCurrentUser), but it works.
It's a little silly, it seems it would be a very easy thing to fix on the box end.
I created a very simple application to pull and display videos on a client site from an album. Everything was set up and humming along fine when it suddenly stopped working. After tracking down the problem, it turned out that the OAuth Token and Secret changed without warning last week.
Is this something that will happen periodically? Has anyone else experienced this?
Vimeo's OAuth tokens will only change if granted via XAuth (username and password auth). If this is how you generated the token, it means the authenticated user changed their password.
If this is not the case, user tokens are additionally revoked any time Vimeo forces a password reset. If you want to find out the exact cause you can contact vimeo directly at https://vimeo.com/help/contact
I was following the steps from box.net document
http://developers.box.com/get-started/#authenticating
I can get a ticket as it said first.
Then I use that ticket at following url https://www.box.com/api/1.0/auth/{your ticket}
in a browser, it works as it says. the browser will direct the user to box login page.
In that login page if I input username/password for login.
I can get the auth_token as the document says.
The problem is while I didn't choose username/password for login but use google openid to login an box account.
I will not able to get that auth_token as the document says. the returning response with following status:
not_logged_in
I want to know if this is a bug or I not correctly using the API to get that auth_token.
As many of box user now are using google openid as primely login choice this seems an common use case need be supported.
If anyone know the answer would be very appreciated.
Thanks
If a non-OpenID user is able to authenticate through the Box API's standard authentication process, then your code is fine. We have had reports of issues for our Single Signon issues, so this is likely a bug on our end.
Just make sure your app can authenticate users who have Box passwords. When we resolve these SSO issues, OpenID users will be able to connect your app without any changes on your end.
I log into hudson as an admin but the left hand column remain the same as a normal non-admin user. I have tried -
Delete the account and create new one with all the admin rights.
delete all cookies
Tried on different browsers
Type in the link for the configuration page, which throw a "missing the ExtendedRead permission" error.
None of the above work, anyone have any suggestion on the issue?
Just to put together what I now so far. Please fill the baps if there are any.
You use the Extended Read Permission Plugin
Configured a user in Hudson. Do you use "Hudson's own user database" than or something else?
The plugin description says it adds a column to the "Matrix-based security" or "Project-based Matrix Authorization Strategy" authorization stream. Do you use one of these two?
Now I am getting confused about what you are missing for an Admin. I use the "Project-based Matrix Authorization Strategy". When I am configured only with the global administration permission. I have full control over Hudson and all jobs running on Hudson.
To be able to help you, please describe you setup as it pertains to the authorization settings in detail. Do you have other plugins installed that might interfere here?