TinyMCE / Tinybrowser 上传选项卡给出 404
只是寻求一些有关 Tinybrowser 的帮助 - 我已尝试将其更新到最新版本,但仍然失败。如果我单击“上传”选项卡,我会收到 404 错误消息。我认为这可能与 htaccess 有关,但我对 htaccess 规则不太热衷,所以我无法确定它。
如果我直接访问该页面(/admin/javascript/tiny_mce/plugins/tinybrowser/upload.php?type=image&tokenget=315af6ee7cf85bc6170760a0c1a5b86d&folder=)我也会得到404。如果我取消“folder=”,它将转到该页面,如果我将其设置为“folllder=”,它将转到该页面。因此,出于某种原因,“folder=”似乎引起了问题。即使我手动为文件夹 var 输入一个字符串。
htaccess 如下:
# default
Options All -Indexes
RewriteEngine On
RewriteBase /
# Make sure there's no way of getting to this file
<FilesMatch "\.htaccess$">
Order deny,allow
Deny from all
Satisfy all
</FilesMatch>
RewriteRule ^login(/*)$ system/login/ [L,QSA]
# Route all other traffic to index.php (front controller)
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ /index.php?_args=$1 [L,QSA]
AddType text/x-component htc
如果我删除,
RewriteRule ^(.*)$ /index.php?_args=$1 [L,QSA]
我最终会收到 403 禁止错误,但显然无论如何删除这一行都是不可行的。
预先感谢大家
Just looking for a bit of help with Tinybrowser - I've tried updating it to the latest version but it's still failing. If I click the 'Upload' tab I get a 404.. I'm thinking it's possibly to do with the htaccess, but I'm not too hot with htaccess rules so I can't pinpoint it.
If I visit the page directly (/admin/javascript/tiny_mce/plugins/tinybrowser/upload.php?type=image&tokenget=315af6ee7cf85bc6170760a0c1a5b86d&folder=) I get a 404 as well. If I take off 'folder=' it'll go to the page, if I make it follllder=, it'll go to the page. So for some reason 'folder=' seems to be causing problems. Even if I manually put in a string for the folder var.
The htaccess is as follows:
# default
Options All -Indexes
RewriteEngine On
RewriteBase /
# Make sure there's no way of getting to this file
<FilesMatch "\.htaccess$">
Order deny,allow
Deny from all
Satisfy all
</FilesMatch>
RewriteRule ^login(/*)$ system/login/ [L,QSA]
# Route all other traffic to index.php (front controller)
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ /index.php?_args=$1 [L,QSA]
AddType text/x-component htc
If I remove
RewriteRule ^(.*)$ /index.php?_args=$1 [L,QSA]
I end up getting a 403 forbidden error, but obviously it's not really feasible to remove this line anyway.
Thanks in advance guys
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
我也刚刚遇到了这个。
该问题似乎是某些服务器上与 PHP 文件的文件名以及“folder=”查询字符串相关的安全限制。
我通过将 upload.php 重命名为 upload_tab.php,然后修改tinybrowser.php 以引用 upload_tab.php 文件来解决这个问题:
这允许您看到上传窗口,并使用 POST 变量提交一些文件。
然而,问题仍然存在......
我遇到的特定服务器对带有“folder=”查询字符串的 upload_file.php 请求也有类似的限制。除了反编译 flexupload.swf(我尝试过,但无法重新编译它)之外,没有一个简单的解决方案,因此我无法完全解决该问题。
I just ran into this as well.
The problem appears to be a security restriction on some servers that relates to the filename of the PHP file, as well as the "folder=" querystring.
I got around it by renaming upload.php to upload_tab.php, and then modifying tinybrowser.php to reference the upload_tab.php file:
This allows you to see the upload window, and submit some files using POST variables.
However, a problem remains...
The particular server I came across also has a similar restriction on a request to upload_file.php with a querystring of 'folder='. There isn't an easy fix for this, apart from decompiling flexupload.swf (which I tried, but couldn't recompile it) so I couldn't fully resolve the issue.