Resolving Checkmarx issues reported
So, here we are using input variable String[] args without any validation…
Lets Encrypt SSL Error: The client lacks sufficient authorization 403 Forbidden
January 07, 2018
Problem
You might encounter below error: ``` Failed authorization procedure. example.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://example.com/.well-known/acme-challenge/jTcgYGTDkvxnX0ocm9NKrJyyM0rAgwwflurdfUURH_Q: "Forbidden
Forbidden
IMPORTANT NOTES: - The following errors were reported by the server: Domain: example.com Type: unauthorized Detail: Invalid response from http://example.com/.well-known/acme-challenge/jTcgYGTDkvxnX0ocm9NKrJyyM0rAgwwflurdfUURH_Q: "Forbidden
```Reason
This happens when you requested LetsEncrypt for new certificate, and LetsEncrypt system tries to contact your website in your web root under directory: .well-knownThis is due to our web server are configured to deny accessing this directory.
Solution
Search below lines in your httpd.conf or .htaccess file.
#<FilesMatch "\.(engine|inc|info|install|make|module|profile|test|po|sh|.*sql|theme|tpl(\.php)?|xtmpl)(~|\.sw[op]|\.bak|\.orig|\.save)?$|^(\..*|Entries.*|Repository|Root|Tag|Template|composer\.(json|lock))$|^#.*#$|\.php(~|\.sw[op]|\.bak|\.orig\.save)$">
# Order allow,deny
#</FilesMatch>Replace above line with below line:
<FilesMatch "\.(engine|inc|install|make|module|profile|po|sh|.*sql|theme|twig|tpl(\.php)?|xtmpl|yml)(~|\.sw[op]|\.bak|\.orig|\.save)?$|^(\.(?!well-known).*|Entries.*|Repository|Root|Tag|Template|composer\.(json|lock))$|^#.*#$|\.php(~|\.sw[op]|\.bak|\.orig|\.save)$">Your complete block will look like below:
<FilesMatch "\.(engine|inc|install|make|module|profile|po|sh|.*sql|theme|twig|tpl(\.php)?|xtmpl|yml)(~|\.sw[op]|\.bak|\.orig|\.save)?$|^(\.(?!well-known).*|Entries.*|Repository|Root|Tag|Template|composer\.(json|lock))$|^#.*#$|\.php(~|\.sw[op]|\.bak|\.orig|\.save)$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order allow,deny
</IfModule>
</FilesMatch>Finally, restart your web server:
sudo service httpd restartAnd, now try the command again. It works :)
Similar Posts
How to get Youtube Video Thumbnail Images
If your youtube video looks like:https://www.youtube.com/watch?v=g0kFl7sBdDQ…
ReactJS - How to restrict data type for different kind of data
Introduction Javascript is not a strict type language. We can use a variable to…
How to generate powerful tags for your content - SEO
One of the biggest task while writing article or blog is to have right set of…
A Practical Guide for better understanding Git Diff
Introduction In this guide, We will get basic understanding of various options…
Python - Some useful Pytest Commands
Introduction In this post, we will explore some useful command line options for…
Latest Posts
Jenkins Pipeline with Jenkinsfile - How To Schedule Job on Cron and Not on Code Commit
Introduction In this post we will see following: How to schedule a job on cron…
How to Git Clone Another Repository from Jenkin Pipeline in Jenkinsfile
Introduction There are some cases, where I need another git repository while…
How to Fetch Multiple Credentials and Expose them in Environment using Jenkinsfile pipeline
Introduction In this post, we will see how to fetch multiple credentials and…
Jenkins Pipeline - How to run Automation on Different Environment (Dev/Stage/Prod), with Credentials
Introduction I have an automation script, that I want to run on different…
Jenkinsfile - How to Create UI Form Text fields, Drop-down and Run for Different Conditions
Introduction I had to write a CICD system for one of our project. I had to…
Java Log4j Logger - Programmatically Initialize JSON logger with customized keys in json logs
Introduction Java log4j has many ways to initialize and append the desired…