Make sure to add all versions of site (with and without www and https) to CORS setting
If this doesnt work, Open the htaccess file in the root of Mautic installation and add this line:
Header always unset X-Frame-Options
Adding all the variables to CORS didnt work.
Possible to guide me where exactly to add the text?
There are 126 lines and I am not sure where exactly to place it
I noticed, you have Wordress installed on this server / domain.
Do you have Wordfence plugin installed by chance or any other “protective” measure?
That could mess with your Mautic.
Joey
I have seen many people with same error solved it by adding Header always unset X-Frame-Options to htaccess as suggested by @OmerGafny
My problem is I dont know where to add it. The htaccess file has 126 lines and i dont know where exactly to add it
# Set Authorization header for OAuth1a for when php is running under fcgi
RewriteCond %{HTTP:Authorization} .+
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
# Determine the RewriteBase automatically and set it as environment variable.
# If you are using Apache aliases to do mass virtual hosting or installed the
# project in a subdirectory, the base path will be prepended to allow proper
# resolution of the app.php file and to redirect to the correct URI. It will
# work in environments without path prefix as well, providing a safe, one-size
# fits all solution. But as you do not need it in this case, you can comment
# the following 2 lines to eliminate the overhead.
RewriteCond %{REQUEST_URI}::$1 ^(/.+)/(.*)::\2$
RewriteRule ^(.*) - [E=BASE:%1]
# Redirect to URI without front controller to prevent duplicate content
# (with and without `/app.php`). Only do this redirect on the initial
# rewrite by Apache and not on subsequent cycles. Otherwise we would get an
# endless redirect loop (request -> rewrite to front controller ->
# redirect -> request -> ...).
# So in case you get a "too many redirects" error or you always get redirected
# to the start page because your Apache does not expose the REDIRECT_STATUS
# environment variable, you have 2 choices:
# - disable this feature by commenting the following 2 lines or
# - use Apache >= 2.3.9 and replace all L flags by END flags and remove the
# following RewriteCond (best solution)
# header always unset X-Frame-Options
RewriteCond %{ENV:REDIRECT_STATUS} ^$
RewriteRule ^index\.php(/(.*)|$) %{ENV:BASE}/$2 [R=301,L]
# If the requested filename exists, simply serve it.
# We only want to let Apache serve files and not directories.
RewriteCond %{REQUEST_FILENAME} -f
RewriteRule .? - [L]
# Rewrite all other queries to the front controller.
RewriteRule .? %{ENV:BASE}/index.php [L]
If its not, kindly tell me where exactly within this place you pointed out.
I got some assistance from Hosting support, but the problem is still there.
He has checked and according to him the server Firewall is not blocking the form.
But it still hangs with the current set of directives added to the .htaccess files.
Also: are you in control of https://onemailserver.pro/ ? Is that on the same server? Is it possible, that the server where onemailserver.pro is has some WPfence protection?
Also: you are using a popup maker embedded into a wp site (which also uses ninjaforms) where you added the mautic form in the popup. Too many dependencies, maybe make it simple? Why the “click here”?
Unrelated comment: your images are could be better resolution. The own is especially pixelated.
Which logs? WordPress or Mautic?
If I know what to look out for, then I will check.
About onemailserver, YES I am in control. that is where i installed mautic which serves all my websites.
It is on the same shared hosting with namecheap.
As it is now, the site in question is:
a WordPress site
with Popupmaker plugin
the form inside the popup plugin is mautic form
Yes, I have Ninja form on the same site (in fact I was using Ninja form on other popups and they are still working, but after a wordpress update, the plugin that connects the ninja form and mautic crashed and the owner is not updating it again. Old connections still work, but i cant setup new connections. SO due to that, I had to go back to use Mautic own form on this particular page/popup.
So you suggesting I just place the form straight without hiding it inside a popup?
For Bitnamic Mautic 3.1 I had the same issue when I Inspect in Chrome.
I had to add the http(s) sites to CORS as mentioned earlier. Also, I had to comment these two lines out in the httpd.conf then restart Apache. So it’s probably all this. You can do a recusive grep -R “X-Frame” * I believe to find all files but it was just the httpd.conf I had to change.
**** To fix modify httpd.conf and comment out these lines
Header always setifempty X-Frame-Options SAMEORIGIN
Header always merge X-Frame-Options SAMEORIGIN
