Title: Error 403 redsys tpv Last modified: August 30, 2016 --- # Error 403 redsys tpv * Resolved [patgy](https://wordpress.org/support/users/patgy/) * (@patgy) * [11 years ago](https://wordpress.org/support/topic/error-403-redsys-tpv/) * Hello. My online store fails to make a payment that is produced by the firewall. * -1 Server returned HTTP response code: 403 for URL: [http://www.mywebsite.com/?wc-api=WC_Redsys_Gateway](http://www.mywebsite.com/?wc-api=WC_Redsys_Gateway) * How I can fix it to continue using BPS? * [https://wordpress.org/plugins/bulletproof-security/](https://wordpress.org/plugins/bulletproof-security/) Viewing 6 replies - 1 through 6 (of 6 total) * Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/) * (@aitpro) * [11 years ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6216952) * Plugin name: RedSys Gateway for WooCommerce * Go to the BPS Security Log page and post the 403 error for the RedSys Gateway for WooCommerce plugin so that I can see what is being blocked. A whitelist rule can then be created to allow what is being blocked. * If you do not see a 403 error for RedSys Gateway for WooCommerce plugin in the BPS Security Log or to confirm or eliminate that BPS is causing the 403 error do these troubleshooting steps: [http://forum.ait-pro.com/forums/topic/read-me-first-free/#bps-free-general-troubleshooting](http://forum.ait-pro.com/forums/topic/read-me-first-free/#bps-free-general-troubleshooting) * > The BPS plugin has built-in troubleshooting capability and should not be deactivated > for troubleshooting. Deactivating BPS removes the built-in troubleshooting > tools/capabilities. You can turn all BPS security features On or Off for troubleshooting > to isolate exactly which BPS security feature is causing an issue/problem or > to confirm or eliminate BPS as the cause of an issue/problem. > Note: After doing each troubleshooting step, test whatever is not working to > see if it is now working. It could also be possible that 2 things are causing > a problem. Example scenario: Doing step 2 and step 3 allow whatever was not > working to start working. That would mean both the root .htaccess file and > the wp-admin .htaccess file are blocking something legitimate. > 1. Optional (not necessary): Make a backup of your .htaccess on the htaccess > Core >>> Backup & Restore tab page. > 2. On the Security Modes page, select > the Deactivate Root Folder BulletProof Mode (Default Mode) Radio button and > click the Activate|Deactivate button. See Custom Code Note 3. On the Security > Modes page, select the Deactivate wp-admin Folder BulletProof Mode Radio button > and click the Activate|Deactivate button. See Custom Code Note 4. If an issue/ > problem is related to Login Security turn Off Login Security on the Login Security& > Monitoring page. * Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/) * (@aitpro) * [11 years ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6216958) * Looking at the RedSys Gateway for WooCommerce plugin code I believe the Query String that is returned to the API script contains “order” in the Query String. So this WooCommerce whitelist solution should work: [http://forum.ait-pro.com/forums/topic/403-forbidden-error-woocommerce/#post-5144](http://forum.ait-pro.com/forums/topic/403-forbidden-error-woocommerce/#post-5144) * Thread Starter [patgy](https://wordpress.org/support/users/patgy/) * (@patgy) * [11 years ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6217038) * I disabled root folder and wp-admin, and error is over. My question is, my website is safe with these parameters disabled? thanks * Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/) * (@aitpro) * [11 years ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6217064) * That would mean root folder and wp-admin folder BulletProof Modes are turned off so no they would not be doing anything. * Do this WooCommerce whitelist solution here: [http://forum.ait-pro.com/forums/topic/403-forbidden-error-woocommerce/#post-5144](http://forum.ait-pro.com/forums/topic/403-forbidden-error-woocommerce/#post-5144) and activate wp-admin BulletProof Mode. * Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/) * (@aitpro) * [10 years, 12 months ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6217099) * Is the issue/problem still occurring or is it resolved? * Thread Start Date: 6-9-2015 to 6-10-2015 Current Date: 6-12-2015 * Plugin Author [AITpro](https://wordpress.org/support/users/aitpro/) * (@aitpro) * [10 years, 12 months ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6217119) * Assuming all questions have been answered – thread has been resolved. If the issue/problem is not resolved or you have additional questions about this specific thread topic then you can post them at any time. We still receive email notifications when threads have been resolved. * Thread Start Date: 6-9-2015 to 6-10-2015 Thread Resolved/Current Date: 6-15- 2015 Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘Error 403 redsys tpv’ is closed to new replies. * ![](https://ps.w.org/bulletproof-security/assets/icon-128x128.png?rev=1731938) * [BulletProof Security](https://wordpress.org/plugins/bulletproof-security/) * [Support Threads](https://wordpress.org/support/plugin/bulletproof-security/) * [Active Topics](https://wordpress.org/support/plugin/bulletproof-security/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/bulletproof-security/unresolved/) * [Reviews](https://wordpress.org/support/plugin/bulletproof-security/reviews/) * 6 replies * 2 participants * Last reply from: [AITpro](https://wordpress.org/support/users/aitpro/) * Last activity: [10 years, 12 months ago](https://wordpress.org/support/topic/error-403-redsys-tpv/#post-6217119) * Status: resolved