Autoreply to this post, in case the tip could help other developpers stuck on this.
I eventually gained access to the Apache logs on the sever and spotted this line : [Fri Feb 12 09:52:05 2010] [error] [client 193.251.184.33] ModSecurity: Access denied with code 501 (phase 2). Pattern match "^(?:ht|f)tp:/" at ARGS:phrase_jour[lien]. [file "/etc/modsecurity/modsecurity_crs_42_tight_security.conf"] [line "32"] [id "950117"] [msg "Remote File Inclusion Attack"] [severity "CRITICAL"] [hostname "nooveo.atelierjmd.fr"] [uri "/backend_dev.php/phrasejour/1"] [unique_id "S3UWtVPzFKkAAEnVLsoAAAAL"] After some search on the Web, this bug seems to be related to the Apache + mod_security combination, and to the rules used by this firewall. Some references here if needed : http://www.linuxquestions.org/questions/linux-server-73/apache-modsecurity-fixing-false-positives-613609/ http://beginlinux.com/blog/2009/05/getting-started-with-modsecurity/ http://www.mighty-studio.net/wp-content/uploads/2008/12/securiser-les-applications-web-de-l-entreprise.pdf The later for french speakers. Regards, CB -----Message d'origine----- De : symfony-users@googlegroups.com [mailto:symfony-us...@googlegroups.com] De la part de NOOVEO - Christophe Brun Envoyé : mardi 9 février 2010 17:22 À : symfony-users@googlegroups.com Objet : [symfony-users] Edit form with a plain text input + save action : incorrect routing under Apache I'm working on the backend side of a web application. The backend has been generated via doctrine:generate-admin. I have a simple objet with a plain url attribute declared as : url: { type: string(128) } in schema.yml. On the edit page, if the user type any text not begining by 'http:/' and clicks the SAVE button, the data is saved and the user is redirected to : http://mysite/backend.php/mymodule/1/edit That's OK. But if he types and saves a text begining by 'http:/', no data is saved and he is redirected to : http://mysite/backend.php/mymodule/1 This incorrect route launches a 'Method Not Implemented, POST to /backend.php/mymodule/1 not supported.' error. This behaviour shows under Linux (Debian) + Apache. On my local PC (windows XP + Apache), I don't have such errors. I don't have a single idea about a way to fix that... -- You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to symfony-us...@googlegroups.com. To unsubscribe from this group, send email to symfony-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en. -- You received this message because you are subscribed to the Google Groups "symfony users" group. To post to this group, send email to symfony-us...@googlegroups.com. To unsubscribe from this group, send email to symfony-users+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/symfony-users?hl=en.
