A Guide to Diagnosing and Fixing HTTP 403 Forbidden Issues
Description
When using RadEditor to enter notes, an error occurs when underlining content. The error log indicates a server-side error with HTTP status 403 Forbidden.
Steps to Reproduce
- Use RadEditor to enter text.
- Apply the underline format to the text.
- Save or submit the content.
Cause
The error is caused by aggressive AWS firewall rules, specifically the CrossSiteScripting_BODY rule, which blocks the request made by RadEditor when underlining content.
Solution
To resolve this error and restore full functionality to RadEditor, follow the steps outlined below:
-
Identify the Firewall Settings: Understand the firewall settings in your environment. In cases reported, AWS firewall rules were found to be the cause.
-
Adjust Firewall Rules: Locate and disable the
CrossSiteScripting_BODY
rule or similar rules that could be incorrectly identifying RadEditor's underline function as a threat. This action should be performed with caution to ensure that disabling these rules does not inadvertently lower your site's security posture. -
Verify Configuration Changes: After adjusting the firewall settings, repeat the steps to reproduce the error to ensure that the issue has been resolved.