403 Forbidden #1845

New Issue

Closed

opened 2026-02-05 02:01:51 +03:00 by OVERLORD · 7 comments

OVERLORD commented 2026-02-05 02:01:51 +03:00

Owner

Copy Link

Originally created by @JayRhithu on GitHub (Sep 7, 2020).

Debian 10, nginx/1.14.2, PHP 7.3
reference: https://www.vultr.com/docs/how-to-install-bookstack-on-debian-9

I am trying to install BookStack in local host. After successfull installation its showing:
http://localhost/bookstack/public/

403 Forbidden

and in log:

directory index of "/var/www/html/bookstack/public/" is forbidden, client: ::1, server: _,

• Given directory permission to www-data:www-data.

• Changed 'try_files $uri $uri/ /index.php?$query_string;' to 'try_files $uri /index.php?$query_string;'

Yet the result is same. How to resolve this issue? Pls help.

Originally created by @JayRhithu on GitHub (Sep 7, 2020). Debian 10, nginx/1.14.2, PHP 7.3 reference: https://www.vultr.com/docs/how-to-install-bookstack-on-debian-9 I am trying to install BookStack in local host. After successfull installation its showing: http://localhost/bookstack/public/ 403 Forbidden and in log: `directory index of "/var/www/html/bookstack/public/" is forbidden, client: ::1, server: _,` * Given directory permission to `www-data:www-data`. * Changed '`try_files $uri $uri/ /index.php?$query_string;`' to '`try_files $uri /index.php?$query_string;`' Yet the result is same. How to resolve this issue? Pls help.

OVERLORD closed this issue 2026-02-05 02:01:55 +03:00

OVERLORD commented 2026-02-05 02:01:59 +03:00

Author

Owner

Copy Link

@ryanc-me commented on GitHub (Sep 8, 2020):

The directory index of [...] is forbidden error relates to directory-indexing, e.g. showing a list of files contained in a directory (something like this). You probably do not want directory-indexing enabled.

This is most likely a configuration problem.

Could you please show:

• ls -la /var/www/html/bookstack
• Your nginx config file

And we may be able to help 🙂

@ryanc-me commented on GitHub (Sep 8, 2020): The `directory index of [...] is forbidden` error relates to directory-indexing, e.g. showing a list of files contained in a directory (something like [this](https://www.keycdn.com/img/support/nginx-directory-index-listing-lg.webp)). You probably do not want directory-indexing enabled. This is most likely a configuration problem. Could you please show: - `ls -la /var/www/html/bookstack` - Your nginx config file And we may be able to help 🙂

OVERLORD commented 2026-02-05 02:02:01 +03:00

Author

Owner

Copy Link

@JayRhithu commented on GitHub (Sep 8, 2020):

Hi, thank you for your kind response. Here are the details:

$ ls -la /var/www/html/bookstack/
total 640
drwxr-xr-x 15 www-data www-data   4096 Sep  7 13:25 .
drwxr-xr-x  3 root     root       4096 Sep  7 13:15 ..
drwxr-xr-x 16 www-data www-data   4096 Sep  7 13:17 app
-rwxr-xr-x  1 www-data www-data   1528 Sep  7 13:17 artisan
drwxr-xr-x  3 www-data www-data   4096 Sep  7 13:17 bootstrap
-rw-r--r--  1 www-data www-data   3471 Sep  7 13:17 composer.json
-rw-r--r--  1 www-data www-data 278567 Sep  7 13:17 composer.lock
-rw-r--r--  1 www-data www-data    200 Sep  7 13:17 crowdin.yml
drwxr-xr-x  5 www-data www-data   4096 Sep  7 13:17 database
drwxr-xr-x  4 www-data www-data   4096 Sep  7 13:17 dev
-rw-r--r--  1 www-data www-data   1091 Sep  7 13:17 docker-compose.yml
-rw-r--r--  1 www-data www-data    905 Sep  7 13:27 .env
-rw-r--r--  1 www-data www-data    870 Sep  7 13:24 .env.example
-rw-r--r--  1 www-data www-data   7986 Sep  7 13:25 .env.example.complete
drwxr-xr-x  8 www-data www-data   4096 Sep  7 13:17 .git
-rw-r--r--  1 www-data www-data     61 Sep  7 13:17 .gitattributes
drwxr-xr-x  4 www-data www-data   4096 Sep  7 13:17 .github
-rw-r--r--  1 www-data www-data    351 Sep  7 13:17 .gitignore
-rw-r--r--  1 www-data www-data   1177 Sep  7 13:17 LICENSE
-rw-r--r--  1 www-data www-data   1097 Sep  7 13:17 package.json
-rw-r--r--  1 www-data www-data 222385 Sep  7 13:17 package-lock.json
-rw-r--r--  1 www-data www-data    251 Sep  7 13:17 phpcs.xml
-rw-r--r--  1 www-data www-data   2451 Sep  7 13:17 phpunit.xml
drwxr-xr-x  5 www-data www-data   4096 Sep  7 13:17 public
-rw-r--r--  1 www-data www-data  13430 Sep  7 13:17 readme.md
drwxr-xr-x  7 www-data www-data   4096 Sep  7 13:17 resources
drwxr-xr-x  2 www-data www-data   4096 Sep  7 13:17 routes
-rw-r--r--  1 www-data www-data    567 Sep  7 13:17 server.php
drwxr-xr-x  7 www-data www-data   4096 Sep  7 13:17 storage
drwxr-xr-x 10 www-data www-data   4096 Sep  7 13:17 tests
drwxr-xr-x  2 www-data www-data   4096 Sep  7 13:17 themes
drwxr-xr-x 59 www-data www-data   4096 Sep  7 13:22 vendor
-rw-r--r--  1 www-data www-data      8 Sep  7 13:17 version
-rw-r--r--  1 www-data www-data   1365 Sep  7 13:17 webpack.config.js

---

nginx.conf

user www-data;
worker_processes auto;
pid /run/nginx.pid;
include /etc/nginx/modules-enabled/*.conf;

events {
	worker_connections 768;
	# multi_accept on;
}

http {

	##
	# Basic Settings
	##

	sendfile on;
	tcp_nopush on;
	tcp_nodelay on;
	keepalive_timeout 65;
	types_hash_max_size 2048;
	# server_tokens off;

	# server_names_hash_bucket_size 64;
	# server_name_in_redirect off;

	include /etc/nginx/mime.types;
	default_type application/octet-stream;

	##
	# SSL Settings
	##

	ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
	ssl_prefer_server_ciphers on;

	##
	# Logging Settings
	##

	access_log /var/log/nginx/access.log;
	error_log /var/log/nginx/error.log;

	##
	# Gzip Settings
	##

	gzip on;

	# gzip_vary on;
	# gzip_proxied any;
	# gzip_comp_level 6;
	# gzip_buffers 16 8k;
	# gzip_http_version 1.1;
	# gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;

	##
	# Virtual Host Configs
	##

	include /etc/nginx/conf.d/*.conf;
	include /etc/nginx/sites-enabled/*;
}


#mail {
#	# See sample authentication script at:
#	# http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript
# 
#	# auth_http localhost/auth.php;
#	# pop3_capabilities "TOP" "USER";
#	# imap_capabilities "IMAP4rev1" "UIDPLUS";
# 
#	server {
#		listen     localhost:110;
#		protocol   pop3;
#		proxy      on;
#	}
# 
#	server {
#		listen     localhost:143;
#		protocol   imap;
#		proxy      on;
#	}
#}

---

sites-enabled/bookstack.conf

server {
  listen 80;
  listen [::]:80;

  server_name bookstack;

  root /var/www/html/bookstack/public;
  index index.php;

  location / {
    try_files $uri $uri/ /index.php?$query_string;
  }

  location ~ \.php$ {
    fastcgi_index index.php;
    try_files $uri =404;
    include fastcgi_params;
    fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
    fastcgi_pass unix:/run/php/php7.3-fpm.sock;
  }
}

---

@JayRhithu commented on GitHub (Sep 8, 2020): Hi, thank you for your kind response. Here are the details: ``` $ ls -la /var/www/html/bookstack/ total 640 drwxr-xr-x 15 www-data www-data 4096 Sep 7 13:25 . drwxr-xr-x 3 root root 4096 Sep 7 13:15 .. drwxr-xr-x 16 www-data www-data 4096 Sep 7 13:17 app -rwxr-xr-x 1 www-data www-data 1528 Sep 7 13:17 artisan drwxr-xr-x 3 www-data www-data 4096 Sep 7 13:17 bootstrap -rw-r--r-- 1 www-data www-data 3471 Sep 7 13:17 composer.json -rw-r--r-- 1 www-data www-data 278567 Sep 7 13:17 composer.lock -rw-r--r-- 1 www-data www-data 200 Sep 7 13:17 crowdin.yml drwxr-xr-x 5 www-data www-data 4096 Sep 7 13:17 database drwxr-xr-x 4 www-data www-data 4096 Sep 7 13:17 dev -rw-r--r-- 1 www-data www-data 1091 Sep 7 13:17 docker-compose.yml -rw-r--r-- 1 www-data www-data 905 Sep 7 13:27 .env -rw-r--r-- 1 www-data www-data 870 Sep 7 13:24 .env.example -rw-r--r-- 1 www-data www-data 7986 Sep 7 13:25 .env.example.complete drwxr-xr-x 8 www-data www-data 4096 Sep 7 13:17 .git -rw-r--r-- 1 www-data www-data 61 Sep 7 13:17 .gitattributes drwxr-xr-x 4 www-data www-data 4096 Sep 7 13:17 .github -rw-r--r-- 1 www-data www-data 351 Sep 7 13:17 .gitignore -rw-r--r-- 1 www-data www-data 1177 Sep 7 13:17 LICENSE -rw-r--r-- 1 www-data www-data 1097 Sep 7 13:17 package.json -rw-r--r-- 1 www-data www-data 222385 Sep 7 13:17 package-lock.json -rw-r--r-- 1 www-data www-data 251 Sep 7 13:17 phpcs.xml -rw-r--r-- 1 www-data www-data 2451 Sep 7 13:17 phpunit.xml drwxr-xr-x 5 www-data www-data 4096 Sep 7 13:17 public -rw-r--r-- 1 www-data www-data 13430 Sep 7 13:17 readme.md drwxr-xr-x 7 www-data www-data 4096 Sep 7 13:17 resources drwxr-xr-x 2 www-data www-data 4096 Sep 7 13:17 routes -rw-r--r-- 1 www-data www-data 567 Sep 7 13:17 server.php drwxr-xr-x 7 www-data www-data 4096 Sep 7 13:17 storage drwxr-xr-x 10 www-data www-data 4096 Sep 7 13:17 tests drwxr-xr-x 2 www-data www-data 4096 Sep 7 13:17 themes drwxr-xr-x 59 www-data www-data 4096 Sep 7 13:22 vendor -rw-r--r-- 1 www-data www-data 8 Sep 7 13:17 version -rw-r--r-- 1 www-data www-data 1365 Sep 7 13:17 webpack.config.js ``` -------------------------------------------------------------------------------- nginx.conf ``` user www-data; worker_processes auto; pid /run/nginx.pid; include /etc/nginx/modules-enabled/*.conf; events { worker_connections 768; # multi_accept on; } http { ## # Basic Settings ## sendfile on; tcp_nopush on; tcp_nodelay on; keepalive_timeout 65; types_hash_max_size 2048; # server_tokens off; # server_names_hash_bucket_size 64; # server_name_in_redirect off; include /etc/nginx/mime.types; default_type application/octet-stream; ## # SSL Settings ## ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE ssl_prefer_server_ciphers on; ## # Logging Settings ## access_log /var/log/nginx/access.log; error_log /var/log/nginx/error.log; ## # Gzip Settings ## gzip on; # gzip_vary on; # gzip_proxied any; # gzip_comp_level 6; # gzip_buffers 16 8k; # gzip_http_version 1.1; # gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript; ## # Virtual Host Configs ## include /etc/nginx/conf.d/*.conf; include /etc/nginx/sites-enabled/*; } #mail { # # See sample authentication script at: # # http://wiki.nginx.org/ImapAuthenticateWithApachePhpScript # # # auth_http localhost/auth.php; # # pop3_capabilities "TOP" "USER"; # # imap_capabilities "IMAP4rev1" "UIDPLUS"; # # server { # listen localhost:110; # protocol pop3; # proxy on; # } # # server { # listen localhost:143; # protocol imap; # proxy on; # } #} ``` ---------------------------------------------------------------------------- sites-enabled/bookstack.conf ``` server { listen 80; listen [::]:80; server_name bookstack; root /var/www/html/bookstack/public; index index.php; location / { try_files $uri $uri/ /index.php?$query_string; } location ~ \.php$ { fastcgi_index index.php; try_files $uri =404; include fastcgi_params; fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; fastcgi_pass unix:/run/php/php7.3-fpm.sock; } } ``` ----------------------------------------------------------------------------

OVERLORD commented 2026-02-05 02:02:04 +03:00

Author

Owner

Copy Link

@ryanc-me commented on GitHub (Sep 8, 2020):

Can you also show ls -la /var/www/html/bookstack/public?

@ryanc-me commented on GitHub (Sep 8, 2020): Can you also show `ls -la /var/www/html/bookstack/public`?

OVERLORD commented 2026-02-05 02:02:08 +03:00

Author

Owner

Copy Link

@JayRhithu commented on GitHub (Sep 8, 2020):

$ ls -la /var/www/html/bookstack/public/
total 80
drwxr-xr-x  5 www-data www-data  4096 Sep  7 13:17 .
drwxr-xr-x 15 www-data www-data  4096 Sep  7 13:25 ..
-rw-r--r--  1 www-data www-data  5672 Sep  7 13:17 book_default_cover.png
drwxr-xr-x  2 www-data www-data  4096 Sep  7 13:17 dist
-rw-r--r--  1 www-data www-data 10933 Sep  7 13:17 favicon.ico
-rw-r--r--  1 www-data www-data   562 Sep  7 13:17 .htaccess
-rw-r--r--  1 www-data www-data  1711 Sep  7 13:17 index.php
drwxr-xr-x  3 www-data www-data  4096 Sep  7 13:17 libs
-rw-r--r--  1 www-data www-data 11098 Sep  7 13:17 loading.gif
-rw-r--r--  1 www-data www-data  5415 Sep  7 13:17 logo.png
drwxr-xr-x  2 www-data www-data  4096 Sep  7 13:17 uploads
-rw-r--r--  1 www-data www-data  7405 Sep  7 13:17 user_avatar.png
-rw-r--r--  1 www-data www-data  1193 Sep  7 13:17 web.config

---

@JayRhithu commented on GitHub (Sep 8, 2020): ``` $ ls -la /var/www/html/bookstack/public/ total 80 drwxr-xr-x 5 www-data www-data 4096 Sep 7 13:17 . drwxr-xr-x 15 www-data www-data 4096 Sep 7 13:25 .. -rw-r--r-- 1 www-data www-data 5672 Sep 7 13:17 book_default_cover.png drwxr-xr-x 2 www-data www-data 4096 Sep 7 13:17 dist -rw-r--r-- 1 www-data www-data 10933 Sep 7 13:17 favicon.ico -rw-r--r-- 1 www-data www-data 562 Sep 7 13:17 .htaccess -rw-r--r-- 1 www-data www-data 1711 Sep 7 13:17 index.php drwxr-xr-x 3 www-data www-data 4096 Sep 7 13:17 libs -rw-r--r-- 1 www-data www-data 11098 Sep 7 13:17 loading.gif -rw-r--r-- 1 www-data www-data 5415 Sep 7 13:17 logo.png drwxr-xr-x 2 www-data www-data 4096 Sep 7 13:17 uploads -rw-r--r-- 1 www-data www-data 7405 Sep 7 13:17 user_avatar.png -rw-r--r-- 1 www-data www-data 1193 Sep 7 13:17 web.config ``` ---------------------------------------------------------------------------------

OVERLORD commented 2026-02-05 02:02:13 +03:00

Author

Owner

Copy Link

@ryanc-me commented on GitHub (Sep 9, 2020):

Hmm, everything seems to be correct.

It's hard to debug issues like this without access to the system, so I can only provide some suggestions:

1. Does /run/php/php7.3-fpm.sock exist? The fpm socket may be named something different depending on the PHP version (try ls -la /run/php/ to see which sockets are available). If nothing
2. Is php-fpm running? (try systemctl list-units --type=service | grep fpm to see the service name, then systemctl status whatever.service).
3. Are you sure server_name bookstack in the Nginx config is correct? With that set, Bookstack will only be available from http://bookstack/blah. Perhaps server_name 127.0.0.20 or similar would work better (then access via http://127.0.0.20/).
4. If none of that works, could you post:
   a. The full Nginx logs
   b. php -v
   c. nginx -t

@ryanc-me commented on GitHub (Sep 9, 2020): Hmm, everything seems to be correct. It's hard to debug issues like this without access to the system, so I can only provide some suggestions: 1. Does `/run/php/php7.3-fpm.sock` exist? The fpm socket may be named something different depending on the PHP version (try `ls -la /run/php/` to see which sockets are available). If nothing 2. Is php-fpm running? (try `systemctl list-units --type=service | grep fpm` to see the service name, then `systemctl status whatever.service`). 3. Are you sure `server_name bookstack` in the Nginx config is correct? With that set, Bookstack will only be available from `http://bookstack/blah`. Perhaps `server_name 127.0.0.20` or similar would work better (then access via `http://127.0.0.20/`). 4. If none of that works, could you post: a. The full Nginx logs b. `php -v` c. `nginx -t`

OVERLORD commented 2026-02-05 02:02:17 +03:00

Author

Owner

Copy Link

@JayRhithu commented on GitHub (Sep 9, 2020):

Hurrah....

The third point itself solved the issue... changes made in bookstack.conf file server_name bookstack to server_name 127.0.0.20. And in browser http://127.0.0.20/login. It workes like a charm.

Thank you very much for your kind support and guidance.

@JayRhithu commented on GitHub (Sep 9, 2020): Hurrah.... The third point itself solved the issue... changes made in bookstack.conf file `server_name bookstack` to `server_name 127.0.0.20`. And in browser http://127.0.0.20/login. It workes like a charm. Thank you very much for your kind support and guidance.

OVERLORD commented 2026-02-05 02:02:21 +03:00

Author

Owner

Copy Link

@ryanc-me commented on GitHub (Sep 9, 2020):

Woo, glad to hear you got it sorted! 😁

@ryanc-me commented on GitHub (Sep 9, 2020): Woo, glad to hear you got it sorted! 😁

OVERLORD referenced this issue 2026-02-05 10:20:06 +03:00

[PR #1845] [MERGED] Add close icon to notifications #5909

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

development

further_theme_development

l10n_development

release

llm_only

vectors

v25-11

docker_env

drawio_rendering

user_permissions

ldap_host_failover

svg_image

prosemirror

captcha_example

fix/video-export

v25.12.3

v25.12.2

v25.12.1

v25.12

v25.11.6

v25.11.5

v25.11.4

v24.11.4

v25.11.3

v25.11.2

v25.11.1

v25.11

v25.07.3

v25.07.2

v25.07.1

v25.07

v25.05.2

v25.05.1

v25.05

v25.02.5

v25.02.4

v25.02.3

v25.02.2

v25.02.1

v25.02

v24.12.1

v24.12

v24.10.3

v24.10.2

v24.10.1

v24.10

v24.05.4

v24.05.3

v24.05.2

v24.05.1

v24.05

v24.02.3

v24.02.2

v24.02.1

v24.02

v23.12.3

v23.12.2

v23.12.1

v23.12

v23.10.4

v23.10.3

v23.10.2

v23.10.1

v23.10

v23.08.3

v23.08.2

v23.08.1

v23.08

v23.06.2

v23.06.1

v23.06

v23.05.2

v23.05.1

v23.05

v23.02.3

v23.02.2

v23.02.1

v23.02

v23.01.1

v23.01

v22.11.1

v22.11

v22.10.2

v22.10.1

v22.10

v22.09.1

v22.09

v22.07.3

v22.07.2

v22.07.1

v22.07

v22.06.2

v22.06.1

v22.06

v22.04.2

v22.04.1

v22.04

v22.03.1

v22.03

v22.02.3

v22.02.2

v22.02.1

v22.02

v21.12.5

v21.12.4

v21.12.3

v21.12.2

v21.12.1

v21.12

v21.11.3

v21.11.2

v21.11.1

v21.11

v21.10.3

v21.10.2

v21.10.1

v21.10

v21.08.6

v21.08.5

v21.08.4

v21.08.3

v21.08.2

v21.08.1

v21.08

v21.05.4

v21.05.3

v21.05.2

v21.05.1

v21.05

v21.04.6

v21.04.5

v21.04.4

v21.04.3

v21.04.2

v21.04.1

v21.04

v0.31.8

v0.31.7

v0.31.6

v0.31.5

v0.31.4

v0.31.3

v0.31.2

v0.31.1

v0.31.0

v0.30.7

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.29.2

v0.29.1

v0.29.0

v0.28.3

v0.28.2

v0.28.1

v0.28.0

v0.27.5

v0.27.4

v0.27.3

v0.27.2

v0.27.1

v0.27

v0.26.4

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.5

v0.25.4

v0.25.3

v0.25.2

v0.25.1

v0.25.0

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.0

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

0.7.2

v.0.7.1

v0.7.0

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

Labels

Clear labels

🎨 Design

📖 Docs Update

🐛 Bug

🐛 Bug

:cat2:🐈 Possible duplicate

💿 Database

☕ Open to discussion

💻 Front-End

🐕 Support

🚪 Authentication

🌍 Translations

🔌 API Task

🏭 Back-End

⛲ Upstream

🔨 Feature Request

🛠️ Enhancement

🛠️ Enhancement

🛠️ Enhancement

❤️ Happy feedback

🔒 Security

🔍 Pending Validation

💆 UX

📝 WYSIWYG Editor

🌔 Out of scope

🔩 API Request

:octocat: Admin/Meta

🖌️ View Customization

❓ Question

🚀 Priority

🛡️ Blocked

🚚 Export System

♿ A11y

🔧 Maintenance

> Markdown Editor

pull-request

Mirrored from GitHub Pull Request

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#1845