Commented parts of .htaccess

  • Hi there,

    First, thank you for the great plugin.

    I’m using it on a live site and noticed a weird issue a few days ago.
    My .htaccess file presents this piece of code:

    RewriteEngine on
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule ^(.*) - [E=HTTP_AUTHORIZATION:%1]

    This is required by the https://github.com/WP-API/jwt-auth/ plugin (to use WP login via a Rest API JWT token).

    This exact piece of .htaccess was commented (each line prefixed with a #), thus making my authentication fail in my app.
    I’m trying to pin down the culprit for this .htaccess edition, as this is was not done manually.

    Is there any way that the “All In One WP Security & Firewall” plugin was in cause?
    Just above these lines in the .htaccess, I do have the plugin generated rules (see https://media.mosaika.fr/4gumERG0).
    If the plugin could be in charge of adding these comments, I’d be happy to know how to avoid that in the future.

    Thank you for your help!

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi,

    Do you have the following feature Disallow Unauthorized REST Requests: enabled? This is located in WP Security -> Miscellaneous -> WP REST API.

    Thank you

    Thread Starter Pierre Sa?kali

    (@pskli)

    Hi,

    No, this feature is disabled (checkbox is unchecked) => https://media.mosaika.fr/4gumpR64

    Plugin Contributor mbrsolution

    (@mbrsolution)

    Hi, lets try something different. Can you disable all Firewall rules and then carry out a test? Let me know what happens.

    Thank you

    Thread Starter Pierre Sa?kali

    (@pskli)

    Hey,

    The problem is that I don’t know how/when/why the commenting on these lines happened, and so far it only appeared once.

    I’ll keep and eye on it and let you know if notice it again.

    Thanks for your help!

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Commented parts of .htaccess’ is closed to new replies.