• Resolved somePaulo

    (@finomeno)


    When trying to access a previously open admin page like edit.php after being automatically logged out by the system overnight, I get a 404 page with the not_found slug set by iTSec. Logging back in and reloading the page does not remove the 404. The only difference is that the admin bar appears and I can access other pages that I didn’t try to open while logged out.

    Getting rid of this is nearly impossible. I’ve tried to clear all the site’s data and cookies from the browser, but it didn’t help. Disabling the Hide backend redirection didn’t help either. Logging in from incognito mode helps, but is not an option. The only thing that worked in the end was disabling the Hide backend redirection, logging out, then clearing cookies and site data, and then logging back in. Not the most intuitive way, especially for non-technical people and editors without access to site configuration options.

    Is there an easier way out of such situations, and most importantly how do I prevent this from happening again? I’d like to keep the Hide backend -> Redirection function on though. But editors being unable to edit posts on a production media site is not the best situation…

    My guess is that the Hide backend redirection sets a cookie for a particular admin page when a logged-out user tries to access it. This should get reset or removed upon a new successful login into the system within the same browser environment.

    • This topic was modified 1 year, 5 months ago by somePaulo.
Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support Shalom Taiwo

    (@shalomt)

    Hi @finomeno

    Thank you for reaching out to us.

    I suggest regenerating the .htaccess?file to be sure it’s not corrupted.
    Please read this guide to assist in regenerating the .htaccess?file:?https://help.ithemes.com/hc/en-us/articles/211132357-Frequently-Seen-Support-Issues#500serverErrors.

    If that does not work, please see this article on how to check for permissions which might also be the cause: https://www.hostinger.com/tutorials/how-to-fix-error-404#2_Fix_File_Permissions

    I’ll also recommend unchecking the Security> Settings> Advanced> System Tweaks> Disable PHP in Uploads to see if it helps.

    Please let me know if this helps.

    Best regards,
    Shalom

    Thread Starter somePaulo

    (@finomeno)

    Thank you for the tips.

    Double checked the .htaccess and regenerated it for good measure. It’s identical to the original one, so made no difference. Double checked apache and php-fpm settings on the server too. All good there. Besides, this has happened to me on different client sites in different hosting environments (both shared and VPS).

    Double checked all permissions, and all is fine there. 755 for folders and 644 for files.

    Unchecked ‘Disable PHP in Uploads’, will report back when a user gets logged out again and tries getting to an admin page.

    Thread Starter somePaulo

    (@finomeno)

    Disabling php in uploads seems to do the trick. I still get a not_found page when loading a browser-cached admin page after being automatically logged out, but logging back in again now returns things to normal. I’ll mark this as solved for now. Thank you!

    • This reply was modified 1 year, 4 months ago by somePaulo.
Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Admin 404 redirects’ is closed to new replies.