Discover Centmin Mod today
Register Now

Wordpress Big .js file load anymore

Discussion in 'Blogs & CMS usage' started by Max, Aug 30, 2018.

Tags:
  1. Max

    Max Member

    67
    4
    8
    Feb 17, 2018
    Ratings:
    +6
    Local Time:
    6:19 PM
  2. eva2000

    eva2000 Administrator Staff Member

    36,387
    7,992
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,304
    Local Time:
    3:19 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    Centmin Mod values security and puts additional measures in place so that end users are also mindful of security. So in your case, you might need to whitelist or unblock the WP plugins related to your 403 permission denied messages.

    If on Centmin Mod 123.09beta01, you may have ran into the new tools/autoprotect.sh cronjob feature outlined at Beta Branch - autoprotect.sh - apache .htaccess check & migration to nginx deny all | Centmin Mod Community If you updated themes or plugins, they may introduce new .htaccess files over time so now need further bypassing autoprotect. It's a security feature that no other nginx based stack has as far as I know :)

    So instead, all .htaccess 'deny from all' detected directories now get auto generated Nginx equivalent location match and deny all setups except if you want to manually bypass the directory from auto protection via a .autoprotect-bypass file - details below here.
     
  3. Max

    Max Member

    67
    4
    8
    Feb 17, 2018
    Ratings:
    +6
    Local Time:
    6:19 PM
    Hello

    i can`t find any rules deny all to /wp-content/themes/pro/cornerstone/assets/dist-app/js/
    cache is disable

    Code:
    [10:00][[email protected] rvlove.co]# grep location /usr/local/nginx/conf/autoprotect/rvlove.co/autoprotect-rvlove.co.conf
    location ~* ^/wp-content/updraft/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/uploads/wc-logs/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/uploads/woocommerce_uploads/ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/vendor/websharks/js-minifier/src/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/js-minifier/src/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/js-minifier/src/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/js-minifier/src/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/js-minifier/src/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/vendor/websharks/css-minifier/src/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/css-minifier/src/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/css-minifier/src/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/css-minifier/src/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/css-minifier/src/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/vendor/websharks/html-compressor/src/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/html-compressor/src/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/html-compressor/src/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/html-compressor/src/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/html-compressor/src/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/vendor/websharks/sharkicons/src/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/sharkicons/src/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/sharkicons/src/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/sharkicons/src/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/sharkicons/src/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/vendor/websharks/wp-php-rv/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/wp-php-rv/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/wp-php-rv/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/wp-php-rv/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/vendor/websharks/wp-php-rv/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location /wp-content/plugins/comet-cache-pro/src/ {
      location ~ ^/wp-content/plugins/comet-cache-pro/src/(.+/)?(.+)\.(js)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/(.+/)?(.+)\.(css)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/(.+/)?(.+)\.(gif|jpe?g|png|webp|eot|svg|ttf|woff|woff)$ { allow all; expires 30d; }
      location ~ ^/wp-content/plugins/comet-cache-pro/src/(.+/)?(.+)\.(php|cgi|pl|php3|php4|php5|php6|phtml|shtml)$ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/plugins/wp-piwik/classes/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/plugins/wp-piwik/languages/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/plugins/wp-piwik/logs/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/plugins/wp-piwik/update/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/plugins/si-contact-form/captcha/cache/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/cache/comet-cache/ua-info/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/cache/comet-cache/htmlc/private/ { allow 127.0.0.1; deny all; }
    location ~* ^/wp-content/cache/comet-cache/cache/ { allow 127.0.0.1; deny all; }
    
     
  4. Max

    Max Member

    67
    4
    8
    Feb 17, 2018
    Ratings:
    +6
    Local Time:
    6:19 PM
    but why load centmin not a 5mb js file ?
     
  5. Max

    Max Member

    67
    4
    8
    Feb 17, 2018
    Ratings:
    +6
    Local Time:
    6:19 PM
    ? cs-vendor.js load but not complete
    cs-vendor.js.gz not load 403 Forbidden
     
  6. Max

    Max Member

    67
    4
    8
    Feb 17, 2018
    Ratings:
    +6
    Local Time:
    6:19 PM
    close

    Hello

    i reactivate all plugins and flush browser cache all works.

    thanks
     
  7. eva2000

    eva2000 Administrator Staff Member

    36,387
    7,992
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,304
    Local Time:
    3:19 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    From previous thread Wordpress - Whitelist file, as tested it worked on my Centmin Mod install and as well as yours if outside of wordpress site of yours i.e. in main hostname Wordpress - Whitelist file. So problem is specific to your wordpress install - my gut still has probably comet cache or another wp plugin related maybe and you reactivating all plugins and flushing browser cache sort of lends towards that theory. But glad to hear it works now.
     
..