Discussions
Categories
- 197K All Categories
- 2.5K Data
- 546 Big Data Appliance
- 1.9K Data Science
- 450.8K Databases
- 221.9K General Database Discussions
- 3.8K Java and JavaScript in the Database
- 31 Multilingual Engine
- 552 MySQL Community Space
- 479 NoSQL Database
- 7.9K Oracle Database Express Edition (XE)
- 3.1K ORDS, SODA & JSON in the Database
- 555 SQLcl
- 4K SQL Developer Data Modeler
- 187.2K SQL & PL/SQL
- 21.4K SQL Developer
- 296.3K Development
- 17 Developer Projects
- 139 Programming Languages
- 293K Development Tools
- 110 DevOps
- 3.1K QA/Testing
- 646.1K Java
- 28 Java Learning Subscription
- 37K Database Connectivity
- 158 Java Community Process
- 105 Java 25
- 22.1K Java APIs
- 138.2K Java Development Tools
- 165.3K Java EE (Java Enterprise Edition)
- 19 Java Essentials
- 162 Java 8 Questions
- 86K Java Programming
- 81 Java Puzzle Ball
- 65.1K New To Java
- 1.7K Training / Learning / Certification
- 13.8K Java HotSpot Virtual Machine
- 94.3K Java SE
- 13.8K Java Security
- 205 Java User Groups
- 24 JavaScript - Nashorn
- Programs
- 468 LiveLabs
- 39 Workshops
- 10.2K Software
- 6.7K Berkeley DB Family
- 3.5K JHeadstart
- 5.7K Other Languages
- 2.3K Chinese
- 175 Deutsche Oracle Community
- 1.1K Español
- 1.9K Japanese
- 233 Portuguese
How do I correct a 'Forbidden' error that keeps occurring?
Hello,
I am using APEX 20.1 within a AWS GovCloud environment.
When making changes within the Page Designer side of APEX I am encountering an error that only shows 'Forbidden.' This error means that the changes I am trying to make don't get saved.
Since I have encountered this error with some regularity I have found that using parenthesis () within numerous areas of the Page Designer as well as making numerous changes before saving causes this error to appear.
I have encountered this 'Forbidden' error when trying to set a page's title to something like 'File(s) Upload.' If I remove the parenthesis the page is allowed to be saved.
The second place I have encountered this is when creating a javascript dynamic action that fires on page load (which already functions & exists for another app in the same workspace).
I can use parenthesis in the same manner in other apps within the same workspace without getting this error. Correction: I made a copy of the app causing me issues. This duplicate app allows me to add parenthesis to the title (1st picture above) but the error does occur when trying to create the page load javascript dynamic action (3rd picture above).
Has anyone encountered this error before?
Was a solution found?
Where might I try and hunt down what is causing this?
Is this a reportable bug? If you believe so, where are bugs reported?
Thank you,
Derek D
Answers
-
Have you check web server logs if there is any information about error?
Also connect as SYS to database and query views APEX_DEBUG_MESSAGES and APEX_WORKSPACE_ACTIVITY_LOG if there is some additional information.
I just assume, it's not APEX problem. Problem sounds like to be in your web server side, load balancer, Web Application Firewall....
Bugs relating APEX and other Oracle products should be reported to My Oracle Support.
-
Looking into the APEX_DEBUG_MESSAGES & the APEX_WORKSPACE_ACTIVITY_LOG both do not show the 'Forbidden' error.
When looking at the AWS Load Balancer Monitoring logs they log an 'HTTP4XX' error when the error is thrown in APEX. It looks to be something involving the web server side of things. Is this likely similar to a '404' error?
I have restarted both the AWS EC2 & the Oracle RDS instances and the error still persists.
My team & I are still newbies in the AWS environment & still learning how everything works together.
-
I'm not sure but it might web server responds with HTTP 403 (Forbidden) error.
Open browser developer tools and reproduce issue.
Inspect browser developer tools network tab and see if any request failing. Check what is payload and response for failed request if there is any.
-
Looks like you are correct. When inspecting the page it states that it is a 403 Forbidden.
When looking at the Payload, the request is: "p_request: APPLICATION_PROCESS=writePageData."
& the Response is "Access Denied." Stating further "You do not have permission to access...*our URL*/wwv_flow.ajax...on this server. "
With this information, do you know of further steps to resolve this error?
-
I think it's something on your web server/components side.
Do you use something like "Web Application Firewall", mod_security or similar that check request for e.g. SQL injections or other common attacks and now blocks request as false positive?
-
After lengthy conversations with customer support we have found that there no specific entries in the firewalls that are blocking our URLs.
Is mod_security an APEX feature?
-
After lengthy conversations with customer support we have found that there no specific entries in the firewalls that are blocking our URLs.
Is mod_security an APEX feature?
-
mod_security is web server module
