Articles in this section

See more

HTTP Error Code 403 Forbidden

Pavlos Kaimakis
  • Updated
Follow

Overview

You received a "403 Forbidden" error while you are browsing your app on your device. This article explains why and outlines what you can do to work around it.

Diagnosis

Upon browsing the app you noticed an error "403 Forbidden"

forbidden.jpg

The HTTP 403 Forbidden client error status response code indicates that the server understood the request but refuses to authorize it. Usually, you get an HTTP 403 Forbidden when the server that serves this request has some security restrictions in place you are not complying with.

The most common scenario is when you are trying to embed an iframe from an external server on your app and the web server hosting that page uses the Content-Security-Policy setting to protect its pages.

This web server most probably is configured to add an HTTP header to the response object setting the Content-Security-Policy tag to frame-ancestors 'self'. That means the frame-ancestors must be from the same domain as the original content yielding impossible for you to embed their pages into your app, as it is not the same domain. This security policy is commonly used to avoid clickjacking/UI redressing

Back to the top

Solution

  • This issue is out of BiznessApps Support scope and you have to contact a third party to get your problem resolved. More specifically, you will need to contact the administrator of the web server hosting the page you want to embed and have them disable the security constraints not allowing you to use that page.
  • As a workaround, and only if the 403 Forbidden error is indeed due to iframe restriction (ie the Content-Security-Policy setting that prevents iframes to be embedded on your app is enabled), you can also check the "Open in new browser window" option which will open the web page on the user's device native browser (if that doesn't break your app's policies).

edit_webview.png

Note:  If you do wish to check if your problem is related to iframe restriction you can use the tinywebgallery site to check their site for iframes. For more information about security restrictions, you can have a look at this iframe link.

Back to the top

Testing

If you get your problem resolved, the 403 Forbidden error will disappear and you will be able to browse your app without any problem.

Back to the top

Related Articles

Related articles

Comments

0 comments

Please sign in to leave a comment.