Hey Simon,

You are most likely hitting this issue because your web server is rejecting the URL that is being redirected from Facebook back to the site. This issue is often caused by mod_security. You should check this with your hosting provider and let us know if you are still having this issue

Hi,

Thank you for your fast support. I contacted to our hosting provider and got the answer below.

Thank you for contacting support. I'm sorry for the issues that you are seeing with your site. While I was able to follow the instructions that you provided and recreate an error, it does not actually look like there is a mod_security error being generated by this. There are actually not any apache side errors getting generated at all. You may want to check with the creators of the module for help with why that issue is occurring as I am not finding any server-side errors occurring.

Regards,

Here is screenshot.

Hey Simon,

If you click on the sign up button, do you still get the same error? Please tell your hosting provider that if there is mod_security installed on the server, it prevents these redirections performed by Facebook.

I have got feedback from web hosting provider.

Thank you for your response. I do get an error when I try clicking on the sign up button, however there are not any types of server side errors getting generated, mod_security or otherwise. Without being able to recreate an actual mod_security rule being triggered we are not able to create an exception for your account in mod_security.

Regards

Hey Simon,

When you click on the sign in with facebook button now, what errors do you get? If you are getting some errors from the database, you need to run the SQL query below because mod_security broke the first initiation.

delete from jos_easyblog_oauth where `type`='facebook';

Remember to replace jos_ with your database table prefix.

To reproduce this or request your hosting provider to test this:

1. You need to first run the SQL query above to delete the record (since mod_security broke the initiation)

2. Click on Facebook sign in button

3. Facebook redirects the request back to your site

4. mod_security throws the "Connection reset by peer" error message.

5. Repeat step 1, so that they can see the error on step #4, otherwise they would hit a different error from the database.

Hi,

I do not get error once i click "sign in with facebook". I have got "The connection was reset" when I cick Okay button as on attached picture.

Regards,

Hey Simon,

Hm, it looks like you are using an older version. I just updated your site to the latest version, can you give this a try again?

Thank you very much for your help but the problem still same.

Hey Simon,

Just tested this and it is definitely an issue on your web host. If you look at the URL, of the popup, try accessing it directly, you wouldn't be able to access it too.


http://www.almaliresidence-luxury.com/administrator/index.php?option=com_easyblog&task=facebook.grant&system=1&code=AQC6PWUoyD15y1fXlxYmPfezbxd7EtkRwso1hGjWBjdds__N5KOFwYDY7uQB7xN1nstQEBYvd3vIcQ00vhlsv5MzL7G3FSughjSXjgW_9W4VBs6TW7vW8R72GfOm-KZ7-bDZQomgQo6hRqBCofRfmvrw-cYopt3IJVMpeQB9W0dqvOqAFjVoTZoms8O3cLHnTEXDfxid3fUMRb4dO-Hjh08Io7Rvd60Ju474zxrtd9wvwE9biZhMxyjE31rYdIsxptolBtYAWTZMDHwKofxyUuQNw6ylOUVINf2s1c4gS0xy1BFKXsyFyGuayGYJLOThYDAH1HyDc2M1Q_cCfSwxIoNT&state=aHR0cDovL3d3dy5hbG1hbGlyZXNpZGVuY2UtbHV4dXJ5LmNvbS9hZG1pbmlzdHJhdG9yL2luZGV4LnBocD9vcHRpb249Y29tX2Vhc3libG9n#_=_

You can paste this link to your web host and get them to try it themselves. If the link reaches Joomla, the page should actually render but in this case, before it even reaches the index.php of your Joomla site, the web server is already rejecting the request.

I did click on the link and am still getting that same type of error, however there are not any server side errors getting generated at all. If it was a mod_security issue then one of the mod_security rules would be getting triggered, which would then show up in our error logs, which is not what is happening. You may want to try fully uninstalling that module and then re-install it to see if that helps correct the issue.

Regards,

Hi Simon,

To be honest we are not entirely sure why your server is blocking the facebook request as like my colleague Mark said, your server already block the request before it even reach joomla site (index.php file). This will only occur when your server is blocking the request made from reaching your joomla site entirely. Perhaps you can consult with your webhosting service provider again and ask whether they have use different rule of security apart from mod_security. Hope you understand.

Hello Simon, Mark and Ezrul,

I have had the same problem with the new version 5? I worked with them for about a week and still to no avail. I contacted my webhost and they say it is not on their end either. I think there is something in the app because the other ones work, Twitter and Linkedin. It has something to do with Facebook. Can't wait to find out what it really is.

http://americandesignteam.com/administrator/index.php?option=com_easyblog&task=facebook.grant&system=1&error_code=1349048&error_message=Given+URL+is+not+allowed+by+the+Application+configuration%3A+One+or+more+of+the+given+URLs+is+not+allowed+by+the+App%27s+settings.++It+must+match+the+Website+URL+or+Canvas+URL%2C+or+the+domain+must+be+a+subdomain+of+one+of+the+App%27s+domains.&state=aHR0cDovL2FtZXJpY2FuZGVzaWdudGVhbS5jb20vYWRtaW5pc3RyYXRvci9pbmRleC5waHA%2Fb3B0aW9uPWNvbV9lYXN5YmxvZw%3D%3D#_=_

Hey Scott,

I think it has something to do with this portion of the URL,

state=aHR0cDovL2FtZXJpY2FuZGVzaWdudGVhbS5jb20vYWRtaW5pc3RyYXRvci9pbmRleC5waHA%2Fb3B0aW9uPWNvbV9lYXN5YmxvZw%3D%3D#_=_

As soon as I remove this from the query string, the page loads up fine even if there's an error.

Hi,

I also contacted my webhost again and they say it is not on their as messages below.
-------------------------------
I've followed the error log on your domain while walking through the steps to replicate this issue, and also turned on PHP error reporting. Unfortunately I haven't received any errors here on the server, but I do see the original issue you mentioned. In Google Chrome that is displaying as the following error: "No Data received ERR_EMPTY_RESPONSE". What this means is that the application didn't return any information in it's response headers from the application. This could be due to the way that the application is handling some error in the application, possibly an authentication issue with Facebook APIs, however I am not seeing anything in the server Firewall, or any errors server side that are causing this to fail. I checked into the possibility that this might be a timeout issue, and doubled all of your timeout settings in your php.ini file, however the response from the server is almost immediate, and is still occurring, so this does not seem to be an issue with
a time out of any kind either. Unfortunately there are not any errors being generated server side that we would be able to look into, which indicates this is likely an issue more internal to something in the application itself.

--------------------

Regards,

Hey Simon,

Hm, this is pretty strange. You can try this yourself (without Joomla involved) . I have created a new debug.php file which is totally unrelated to either Joomla or EasyBlog. Notice the following tests that I ran on the site:

Works perfectly fine and displays "hello world" - http://www.almaliresidence-luxury.com/debug.php

Doesn't work at all. - http://www.almaliresidence-luxury.com/debug.php?option=com_easyblog&task=facebook.grant&system=1&error_code=1349048&error_message=Given+URL+is+not+allowed+by+the+Application+configuration%3A+One+or+more+of+the+given+URLs+is+not+allowed+by+the+App%27s+settings.++It+must+match+the+Website+URL+or+Canvas+URL%2C+or+the+domain+must+be+a+subdomain+of+one+of+the+App%27s+domains.&state=aHR0cDovL2FtZXJpY2FuZGVzaWdudGVhbS5jb20vYWRtaW5pc3RyYXRvci9pbmRleC5waHA%2Fb3B0aW9uPWNvbV9lYXN5YmxvZw%3D%3D#_=_

Mark wrote:

Hey Scott,

I think it has something to do with this portion of the URL,

state=aHR0cDovL2FtZXJpY2FuZGVzaWdudGVhbS5jb20vYWRtaW5pc3RyYXRvci9pbmRleC5waHA%2Fb3B0aW9uPWNvbV9lYXN5YmxvZw%3D%3D#_=_

As soon as I remove this from the query string, the page loads up fine even if there's an error.

if that is the case, isn't it something to do with the easyblog component. I guess I just don't understand why it isn't working.

Hey Scott,

I am sorry for the delay of this reply as I am a little occupied with some meetings earlier today. The "url" is actually being generated by Facebook and not EasyBlog because Facebook is redirecting your request back to your site and because of the token portion, your site is denying access to it.

ok. I was able to fix the error that it was generating above. I need to know if we need submit the app to facebook for approval so we can post to facebook? I am still having problem sharing it to facebook. when I try to share it, it goes to API calls from the server require an appsecret_proof argument.

Hey Scott,

Can I know what did you do to fix that error so that I can take note of this? Was this due to mod_security?

You don't really need to submit the app for approval if you are using the same Facebook account for authentication.

yes. It is a hostgator server.
Yes, go into WHM at Home »Security Center »ModSecurity™ Tools » Rules List, from there click the Edit Custom Rules button.
You can remove and re-add the line for the "10_asl_rules.conf" as you need to test.

Can you please check why I still can't post? I am wondering if I should just uninstall easyblog and start over?

Hey Scott,

Wow nice !

Thanks for your sharing

No need uninstall first, can you start a new thread regarding this issue and provide us with your Joomla backend, Facebook and FTP access so we can help you take a look of this issue.

I've got the same time out connection and I haven't been able to resolve this at all.
I do have admintools installed which is creating my .htaccess file. Do I maybe need to add an exception to a file or a directory here?

hey Jon,

Perhaps you can try consult with your webhosting provide regarding this and send this info to your hosting and see how it goes?

yes. It is a hostgator server.
Yes, go into WHM at Home »Security Center »ModSecurity™ Tools » Rules List, from there click the Edit Custom Rules button.
You can remove and re-add the line for the "10_asl_rules.conf" as you need to test.

I have raised this with the host and awaiting a response. I just wondered if there are any known requirements with admintools and their .htaccess file generator which locks a lot of stuff down?

Hey Jon,

I am really sorry that delay of this reply,

To be honestly, I'm not really sure regarding this

But based on what i knew is when you hitting this Facebook connection failed, most likely is because of this ModSecurity from your server.

By the way, Keep us updated then.

I have just been informed that the changes required to mod_security cant be made on a website basis

from support:
Unfortunately, it's not possible to modify mod_security rules in this fashion as they're operating fleetwide and custom changes will get overwritten so we can only enable or disable mod_security rules on per website basis.


we have decided to keep mod_security and lose the functionality of the extensions - this is a shame as we have been using easyblog successfully for a long time and this was the main reason

please let us know if you find a workaround for the extension and we will be back on board

;-)

Hey lan,

I am sorry that delay of this reply,

Actually this is out of our control The "url" is actually being generated by Facebook and not EasyBlog because Facebook is redirecting your request back to your site and because of the token portion, your site is denying access to it.