Joomla! Discussion Forums

I have been trying to find this problem mentioned specifically but it does not seem to be one which is under scrutiny.  I was also careful to apply the patch several times and check out the integrity of my db before posting.  I've also held off because there seemed to be a lot more important issues that people needed to get sorted first.

Here is the detail:

On my site http://bayjournal.com.au if you do a search for a keyword, say "shark", you will get the usual list of possibilities--but all of the links presented are incorrect.  For example the item titled "Amity Shark attack" leaves off the ItemId number  "43" to give
http://bayjournal.com.au/joomla/index.p ... 87&Itemid=
rather than the correct
http://bayjournal.com.au/joomla/index.p ... &Itemid=43

The result is that the user cannot view the item and is told
You are not authorized to view this resource.
You need to login.

This appears to happen right across the board for all itemids whenever the system is required to display a clickable link from the search.  The latest wrinkle that I have discovered is that it does the same thing in the generated RSS files. 

As I have a rather large number of live articles--roughly 420 at last count--the search is pretty well essential for the users to find topics of interest.

The issue did not arise with my local preproduction Linux machine.  The only difference between it and my ISP host appears to be that it is running on FreeBSD.  If you do check the site, don't be fooled by the non-standard, but incredibily useful "Instant Search" module: the problem does not go away when I regress to the normal search module.  I also checked with the authors, B4M, and they confirmed that the problem was not with them and asked me to post the issue here.

One last detail: to avoid issues, I don't use SEF but I did note that a similar bug had been reported for that feature too.

Have you tried the possible fixes in this thread?

I would be a fool to say that I had tried every last one of this rich compendium of possible causes.  Thank you for pointing it out--I did not use the right search terms to find it. As usual the problem was blind administrator panic: with the pressure of many users, I had missed a step in the review of my setup.

What I hadn't done properly during the testing and retesting was to turn off the D4M Instant Search 1.4 Lite, a brilliant AJAX replacement for the standard search box.  Aha!  A simple swap of the components back to the standard mod_search in "user4" and no more error message. 

Clean up
1.  I will be notifying DesignforMambo of the problem, it was working just fine before the upgrade.  Instant Search is too good an innovation to allow it to rot. 

2.  That the possible causes could be so many should be a warning flag for the developers of Joomla as it moves towards industrial strength security.  The "not authorized" error message is a little too broad to be useful for sensible diagnostics. Perhaps an error code system needs to be implemented.  Joomla is becoming a powerful but increasingly complex tool.  Moves to accredit extensions is a good move but it should be matched with debugging tools for the administrator that highlight possible culprits. 

3.  I still have a problem with mod_rssfeed returning item=0 for all items but I am sure that is going to end up as some switch that I have not thrown as well.

4. The fact that my search based on "ItemNo" drew a blank is a worry but at least this reply will help those who run into the same kind of issues as I did. 

Thanks for the prod in the right direction--so glad I went with the Joomla community.