HI! First, I’m very sorry if this is the wrong community, if there’s a better comm, please point me in their direction.
I’ve been running my own piefed instance for a few months now, but recently (maybe? idk how long this has been happening), if I try to open the webui from a private browser tab, or from another device, I get a 403 forbidden error code. {“code”:403,“status”:“Forbidden”}. Is this a common issue?
I’ve been trying to look this up online and it seems like it might be nginx, but I have many other things running behind nginx with that don’t act like this, so I figured I’d ask here before going to a more general nginx community.
You’re more than welcome to try going to my instance yourself, at piefed.zeromedia.vip
UPDATE:
Turning the “private instance” setting on and then back off seems to have fixed it. I’m not 100% yet but I can currently access piefed on all devices/browser sessions
Update 2:
That didn’t quite fix it, for some reason, turning the private instance setting on does fix it, but as soon as I turn it off again, it breaks
In the form at /admin/misc, turn off the Honeypot. It’s a checkbox near the bottom. Does that help?
Yes! That fixed it!
Your browser must be prefetching the honeypot url… Which browser do you have?
Just standard firefox, it happens on desktop and mobile, and it looks like it also happens on ios safari.
If you set the FLASK_DEBUG environment variable to 1 and then go to piefed.zeromedia.vip/check_ip does it correctly detect your IP address? If not then bot traffic, hitting the honeypot, would be getting detected as the same user as everyone else so when the bot IP is banned so is all anonymous users.