: Nginx deny-all fails to execute PHP code in 403.html I want to deny access to some directories and files, so I use the deny_all option to return a 403.html page. However, it does not allow

I want to deny access to some directories and files, so I use the deny_all option to return a 403.html page. However, it does not allow me to execute any PHP code in that page.

Something to do with "internal"? Should I use "return" or "error_page" instead?

Here's my config, any other suggestions appreciated...

#
# Redirect all to www
#
server
{
listen 80;

server_name site.com;
return 301 $scheme://www.site.com$request_uri;
}

#
# Validate and process requests
#
server
{
listen 80;

server_name site.com *.site.com;

root /var/www/site.com;
index index.html;
#
# Error and Access logs
#
error_log /var/log/nginx/error.site.log notice;
access_log /var/log/nginx/access.site.log;

error_page 403 /Src/403.html;
location = /Src/403.html
{
internal;
}

error_page 404 /Src/404.html;
location = /Src/404.html
{
internal;
}

location /
{
try_files $uri $uri/ =404;
}

location ~ .(py|sh|tgz|xml)$
{
deny all;
}

location ~ .(html|php)$
{
include fastcgi.conf;
fastcgi_split_path_info ^(.+.php)(/.+)$;
fastcgi_pass unix:/var/run/php5-fpm.sock;
fastcgi_index index.html;
try_files $uri.html $uri.php $uri/ =404;
}

10.01% popularity Vote Up Vote Down

: How can I check if my metadata tags for Google Scholar work? I’m creating a site where I would like to use tags for indexing my pages on Google Scholar, but I don’t know if my tags

@Sue5673885

Posted in: #GoogleScholar #MetaTags #StructuredData #Validation

0 Comments

: Need help with A record I have a webhost with built-in domain petasos.000webhostapp.com. I have a custom domain bo-web.be with full DNS control. I'm looking on how to configure an A record to

@Sue5673885

Posted in: #DnsServers #Domains #WebHosting

1 Comments

: Google Search Console reporting warnings for URLs in the sitemap that have been removed from it for two weeks We have a sitemap that is regenerated daily based on the records in our database.

@Sue5673885

Posted in: #Sitemap #XmlSitemap

1 Comments

: Point second domain at website when only CloudFlare IPs have been white listed for first domain I blocked the IP address of my website because I'm using CloudFlare whose IPs I've white listed.

@Sue5673885

Posted in: #Apache #Cdn #Dns #IpAddress

0 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Miguel251

The problem is the location itself. nginx chooses one location process a request. In the case of /Src/403.html, the location = /Src/404.html block takes precedence over the location ~ .(html|php)$ block, which means that none of the PHP directives are included. See this document for details.

If you care that the /Src/403.html URI remains internal, include the necessary directives into that location block. For example:

error_page 403 /Src/403.html;
location = /Src/403.html
{
internal;
include fastcgi.conf;
fastcgi_pass unix:/var/run/php5-fpm.sock;
}

Otherwise, you can just delete the entire location block, in which case, the /Src/403.html URI will be processed by the location ~ .(html|php)$ block.

10% popularity Vote Up Vote Down

Feed

: Nginx deny-all fails to execute PHP code in 403.html I want to deny access to some directories and files, so I use the deny_all option to return a 403.html page. However, it does not allow

More posts by @Sue5673885

: How can I check if my metadata tags for Google Scholar work? I’m creating a site where I would like to use tags for indexing my pages on Google Scholar, but I don’t know if my tags

: Need help with A record I have a webhost with built-in domain petasos.000webhostapp.com. I have a custom domain bo-web.be with full DNS control. I'm looking on how to configure an A record to

: Google Search Console reporting warnings for URLs in the sitemap that have been removed from it for two weeks We have a sitemap that is regenerated daily based on the records in our database.

: Point second domain at website when only CloudFlare IPs have been white listed for first domain I blocked the IP address of my website because I'm using CloudFlare whose IPs I've white listed.

Login to post a comment!

1 Comments

Back to top | Use Dark Theme