Import fails - no "Data has been parsed...." message.

You are saying that the same CSV file works on one server and does not no the other? And file successfully uploaded to the server in both cases?

Then I can only check it if you give me admin access and attach file that you try to import.

Sergey,

I have included the info in a private post.

Here is what I found

Looks like you have some sort of htaccess protection and import script cannot access JSON file with information.

Sergey,

Here is our .htaccess file.

I'm guessing this is the section where the 'tmp' directory gets forbidden.

Disallow front-end access for certain Joomla! system directories

RewriteRule ^(includes/js/.*)$ - [L]

RewriteRule ^(|includes|language|logs|tmp|libraries/joomla|libraries/phpmailer|libraries/phputf8|libraries/simplepie)/.*$ index.php [F,L]

Here is an excerpt from Joomla's security file page that seems to do the same thing.

Disallow front-end access for certain Joomla! system directories

RewriteRule ^includes/js/ - [L]

RewriteRule ^(cache|includes|language|libraries|logs|tmp)/ - [F]

Sergey,

Followup,

I removed the tmp file from the .htaccess file and was able to import successfully! Looks like that was it. Thanks for your help.

Not sure if this opens up a serious security breach or not.

Cheers,

Bill

Not sure if this opens up a serious security breach or not.

Нщг can place htaccess file inside tmp folder and protect. But I do not think there is something unsafe in having tmp folder accessible unless you main htaccess disallow any .php file from any location except index.php

We have moved the site to another host, which happens to be the host where we first encountered the initial problem. That host does not provide access to the .htaccess file via cPanel or Filezilla. We have contacted them and after some discussion they agreed to modify the .htaccess file.

They are using the standard Joomla .htaccess language for their clients, so I am surprised that more users of the Import module have not had this problem.

Is it possible to change the name of the directory that Cobalt uses for import to one that is not on the protected list?

For example what directory?

From security perspective, tmp is the best directory. It is opened anyway. So you ahve to protect it. Cobalt import may be absolutely sure it will get access to upload a file there.

I am not to critic, but that is simply not acceptible not give access to htaccess. What if you want to insert extra security protection there from difefren well known exploits? Should you wait til they agree?

The hole purpose of .htaccess is to give every domain user to manage Apache beaviour without accessing main configuration file. I do not see any sense to disable it.