Link in notification, results in: Error 404

[palula]

I have email notifications working nicely, but when I click on link provided in the notification email (ie: http://x.x.x.x/mantis/view.phpid=8), apache shows an Error 404 page...

x.x.x.x represents the valid IP of the machine where mantis is running.

Do you guys know how to get out of this one?
Thanks in advance.

[palula]

I missed some information that can be helpful...

The link takes me to the login page. I log my user and passowrd and AFTER THAT the error occurs.

Anyway... On the error 404 page, there´s still a link to the page. And when I click it, a page appears with this message:

Code: Select all

Forbidden
You don't have permission to access /mantis/login_page.php?return=%2Fmantis%2Fview.phpid%3D12 on this server.

Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.


--------------------------------------------------------------------------------

Apache/2.2.0 (Win32) PHP/5.1.2 Server at x.x.x.x Port 80

x.x.x.x represents the IP of the machine where apache and Mantis are running.

[bmccool]

It's a known bug in version 1.0.3. When it redirects it doesn't insert a ? in the link.

i.e.
http://x.x.x.x/mantis/view.phpid=8
should be
http://x.x.x.x/mantis/view.php?id=8

There's a fix for it though, just check on bugs.mantisbt.org ;)

[Passer]

and where?

[palula]

Didn´t find it either...
-------------------------

Well after looking over again I found this on Bug 0007051

If there is no security reason for it, I would suggest removing the "$t_param = str_replace( '?','', $t_param );" line.
Is this what I really should do?

Oh! By the way, this is in [mantis_path]/core/string_api.php

Thanks!

[palula]

There ya go!
Thanks bmccool... Just had to look around.

Here... Did the procedure with my Mantis and now works sharp!
BTW, changes are supposed to bem made in: [mantis_path]/core/string_api.php (line 193)

Hope this helps...