HOME

TheInfoList



Click Here for Items Related To - HTTP 403
OR:
HTTP 403 on:   [Wikipedia]   [Google]   [Amazon]

HTTP 403 is an HTTP status code meaning access to the requested resource is forbidden. The server understood the request, but will not fulfill it.


Specifications

HTTP 403 provides a distinct error case from HTTP 401; while HTTP 401 is returned when the client has not authenticated, and implies that a successful response may be returned following valid authentication, HTTP 403 is returned when the client is not permitted access to the resource despite providing authentication such as insufficient permissions of the authenticated account. Error 403: "The server understood the request, but is refusing to authorize it." (RFC 7231) Error 401: "The request requires user authentication. The response MUST include a WWW-Authenticate header field (section 14.47) containing a challenge applicable to the requested resource. The client MAY repeat the request with a suitable Authorization header field (section 14.8). If the request already included Authorization credentials, then the 401 response indicates that authorization has been refused for those credentials." (RFC 2616) The
Apache The Apache () are a group of culturally related Native American tribes in the Southwestern United States, which include the Chiricahua, Jicarilla, Lipan, Mescalero, Mimbreño, Ndendahe (Bedonkohe or Mogollon and Nednhi or Carrizaleño an ...
web server returns 403 Forbidden in response to requests for URL paths that corresponded to
file system In computing, file system or filesystem (often abbreviated to fs) is a method and data structure that the operating system uses to control how data is stored and retrieved. Without a file system, data placed in a storage medium would be one larg ...
directories Directory may refer to: * Directory (computing), or folder, a file system structure in which to store computer files * Directory (OpenVMS command) * Directory service, a software application for organizing information about a computer network's u ...
when directory listings have been disabled in the server and there is no Directory Index directive to specify an existing file to be returned to the browser. Some administrators configure the
Mod proxy mod_proxy is an optional module for the Apache HTTP Server. This module implements a proxy, gateway or cache for Apache. It implements proxying capability for AJP13 (Apache JServ Protocol version 1.3), FTP, CONNECT (for SSL), HTTP/0.9, HTTP/1 ...
extension to Apache to block such requests and this will also return 403 Forbidden. Microsoft IIS responds in the same way when directory list ings are denied in that server. In
WebDAV WebDAV (Web Distributed Authoring and Versioning) is a set of extensions to the Hypertext Transfer Protocol (HTTP), which allows user agents to collaboratively author contents ''directly'' in an HTTP web server by providing facilities for concu ...
, the 403 Forbidden response will be returned by the server if the client issued a PROPFIND request but did not also issue the required Depth header or issued a Depth header of infinity.


Substatus error codes for IIS

The following nonstandard codes are returned by Microsoft's
Internet Information Services Internet Information Services (IIS-pronounced 2S, formerly Internet Information Server) is an extensible web server software created by Microsoft for use with the Windows NT family. IIS supports HTTP, HTTP/2, HTTPS, FTP, FTPS, SMTP and NNTP. ...
, and are not officially recognized by
IANA The Internet Assigned Numbers Authority (IANA) is a standards organization that oversees global IP address allocation, autonomous system number allocation, root zone management in the Domain Name System (DNS), media types, and other Interne ...
. * 403.1 – Execute access forbidden * 403.2 – Read access forbidden * 403.3 – Write access forbidden * 403.4 – SSL required * 403.5 – SSL 128 required * 403.6 – IP address rejected * 403.7 – Client certificate required * 403.8 – Site access denied * 403.9 – Too many users * 403.10 – Invalid configuration * 403.11 – Password change * 403.12 – Mapper denied access * 403.13 – Client certificate revoked * 403.14 – Directory listing denied * 403.15 – Client Access Licenses exceeded * 403.16 – Client certificate is untrusted or invalid * 403.17 – Client certificate has expired or is not yet valid * 403.18 – Cannot execute request from that application pool * 403.19 – Cannot execute CGIs for the client in this application pool * 403.20 – Passport logon failed * 403.21 – Source access denied * 403.22 – Infinite depth is denied * 403.502 – Too many requests from the same client IP; Dynamic IP Restriction limit reached * 403.503 – Rejected due to IP address restriction


See also

* * *
List of HTTP status codes This is a list of Hypertext Transfer Protocol (HTTP) response status codes. Status codes are issued by a server in response to a client's request made to the server. It includes codes from IETF Request for Comments (RFCs), other specifications, ...
*
URL redirection URL redirection, also called URL forwarding, is a World Wide Web technique for making a web page available under more than one URL address. When a web browser attempts to open a URL that has been redirected, a page with a different URL is opened ...


Notes


References


External links


Apache Module mod_proxy – Forward


* Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content {{DEFAULTSORT:Http 403 Computer error messages Hypertext Transfer Protocol status codes