Learn about Centmin Mod LEMP Stack today
Register Now

Wordpress One of my WP Plugin not work

Discussion in 'Blogs & CMS usage' started by Mak Adang, Feb 25, 2018.

  1. Mak Adang

    Mak Adang Member

    44
    14
    8
    Jan 4, 2015
    Ratings:
    +15
    Local Time:
    2:28 AM
    1.9.0
    10.0.18-MariaDB
    Hi Eva,

    I have one plugin working before with apache server, but not work with nginx.
    Please help and advice how I can trace the problem since I check in error.log not show the plugin log.

    For your information this plugin using google api and running in wp-admin/admin.php?page=myplugin

    Currently my vps is: Centos 7, nginx 1.13.9, php 7.2.2 pgo and some custom config.

    Thank you
     
  2. eva2000

    eva2000 Administrator Staff Member

    34,674
    7,663
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +11,782
    Local Time:
    5:28 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    Centmin Mod values security and puts additional measures in place so that end users are also mindful of security. So in your case, you might need to whitelist or unblock the WP plugins related to your 403 permission denied messages.

    If you used centmin.sh menu option 22 auto installer Wordpress Nginx Auto Installer, the default wpsecure conf file at /usr/local/nginx/conf/wpincludes/${vhostname}/wpsecure_${vhostname}.conf where vhostname is your domain name, blocks php scripts from executing in wp-content for security

    Below links you can see examples of setting up specific wordpress location matches to punch a hole in the wpsecure blocking to whitelist specific php files that need to be able to run.
    If on Centmin Mod 123.09beta01, you may have ran into the new tools/autoprotect.sh cronjob feature outlined at Beta Branch - autoprotect.sh - apache .htaccess check & migration to nginx deny all | Centmin Mod Community You uploaded scripts may have .htaccess deny from all type files in their directories which may need bypassing autoprotect. It's a security feature that no other nginx based stack has as far as I know :)

    So instead, all .htaccess 'deny from all' detected directories now get auto generated Nginx equivalent location match and deny all setups except if you want to manually bypass the directory from auto protection via a .autoprotect-bypass file - details below here.

    You can read a few threads below on how autoprotect.sh may have caught some folks web apps falsely and the workarounds or improvements made to autoprotect.sh with the help of users feedback and troubleshooting.
     
    • Like Like x 2
  3. Mak Adang

    Mak Adang Member

    44
    14
    8
    Jan 4, 2015
    Ratings:
    +15
    Local Time:
    2:28 AM
    1.9.0
    10.0.18-MariaDB
    Dear Eva,

    Thanks you for your kind help and advise, will check.

    Regards.
     
..