Logout access forbidden

Karmalakas · January 9, 2021, 1:44am

I guess it’s some Login plugin misconfiguration on my side, but can’t figure out. I can login with site.login access account, but then I can’t logout.

If I use login-status.html.twig template, I get:

Forbidden

You don’t have permission to access /task:login.logout/logout-nonce:*** on this server.

If I take URL from login-form.html.twig

{{ uri.addNonce(base_url_relative ~ uri.path ~ '/task' ~ config.system.param_sep ~ 'login.logout', 'logout-form', 'logout-nonce')|e }}

I just get redirected to about:blank#blocked, but still not logged out.

Visually both logout URLs look the same in source

Karmalakas · January 9, 2021, 5:57pm

It seems I get this only on local On production I can logout without a problem. Probably some misconfiguration. Will let you know here if I figure this out

Karmalakas · February 3, 2021, 4:45pm

Am I the only one having this? Can’t figure out what’s wrong with my local env

Absolutely fresh Grav 1.7.5
Admin + dependencies installed via GPM
Added Admin user on first page load
Added second user with site.login permissions only
Added site.login access requirement on /home page
Opened home page, logged in with second user, logout gives “Forbidden” error

Laragon on Win10
Latest Chrome browser

Topic		Replies	Views
Created privated area and page but cannot log out a user Plugins	0	585	August 6, 2018
Login Plugin: Show log in, if not logged in, shot logout if logged in Plugins	9	3604	December 22, 2020
Log out issue (Front end user)	3	711	October 15, 2018
Acl and access Archive	7	534	September 3, 2015
Error when logging into admin Archive	8	199	September 10, 2015

Logout access forbidden

Forbidden

Related Topics