Jump to content

HTTP 403: Difference between revisions

From Wikipedia, the free encyclopedia
Browse history interactively
← Previous editNext edit →
Content deleted Content added
VisualWikitext
I deleted everything...
Tags: Mobile edit Mobile web edit
Introduction/Summary
Line 1: Line 1:
The '''403''' or '''Forbidden''' [[error message]] is a [[Hypertext Transfer Protocol]] (HTTP) [[List of HTTP status codes|standard response code]], in computer network communications, to indicate that the [[Web browser|client]] was able to communicate with a given [[Server (computing)|server]], but is not permitted to perform the requested operation.

==Difference from status "401 Unauthorized"==
==Difference from status "401 Unauthorized"==


Revision as of 03:37, 16 October 2016

The 403 or Forbidden error message is a Hypertext Transfer Protocol (HTTP) standard response code, in computer network communications, to indicate that the client was able to communicate with a given server, but is not permitted to perform the requested operation.

Difference from status "401 Unauthorized"

Status codes 401 (Unauthorized) and 403 (Forbidden) have distinct meanings.

A 401 response indicates that access to the resource is restricted, and the request did not provide any HTTP authentication. It is possible that a new request for the same resource will succeed if authentication is provided. The response must include an HTTP WWW-Authenticate header to prompt the user-agent to provide credentials. If valid credentials are not provided via HTTP Authorization, then 401 should not be used.[1]

A 403 response generally indicates one of two conditions:

  • Authentication was provided, but the authenticated user is not permitted to perform the requested operation.
  • The operation is forbidden to all users. For example, requests for a directory listing return code 403 when directory listing has been disabled.

403 substatus error codes for IIS

en.Wikipedia error message

The following nonstandard code are returned by Microsoft's Internet Information Services and are not officially recognized by IANA.

  • 403.1 - Execute access forbidden.[2]
  • 403.2 - Read access forbidden.[2]
  • 403.3 - Write access forbidden.[2]
  • 403.4 - SSL required.[2]
  • 403.5 - SSL 128 required.[2]
  • 403.6 - IP address rejected.[2]
  • 403.7 - Client certificate required.[2]
  • 403.8 - Site access denied.[2]
  • 403.9 - Too many users.[2]
  • 403.10 - Invalid configuration.[2]
  • 403.11 - Password change.
  • 403.12 - Mapper denied access.
  • 403.13 - Client certificate revoked.
  • 403.14 - Directory listing denied.
  • 403.15 - Client Access Licenses exceeded.
  • 403.16 - Client certificate is untrusted or invalid.
  • 403.17 - Client certificate has expired or is not yet valid.
  • 403.18 - Cannot execute request from that application pool.
  • 403.19 - Cannot execute CGIs for the client in this application pool.
  • 403.20 - Passport logon failed.
  • 403.21 - Source access denied.
  • 403.22 - Infinite depth is denied.
  • 403.502 - Too many requests from the same client IP; Dynamic IP Restriction limit reached.

See also

References

  1. ^ Fielding, R.; Reschke, J. (2014). "401 Unauthorized". Hypertext Transfer Protocol (HTTP/1.1): Authentication. IETF. p. 6. sec. 3.1. doi:10.17487/RFC7235. RFC 7235. Retrieved August 24, 2015. {{citation}}: Unknown parameter |month= ignored (help)
  2. ^ a b c d e f g h i j http://kb.globalscape.com/KnowledgebaseArticle10141.aspx
Retrieved from "https://en.wikipedia.org/w/index.php?title=HTTP_403&oldid=744573923"