Error fetching workflows

I have an activation key of a business plan. In the beginning, everything is working fine. But then, I started to get 403 errors while trying to reach my workflows even if I’m the owner of self-hosted N8N instance. Though, I can see all the workflows in the overview menu. Additionally, I’m constantly having 403 errors while inviting a user, saving a workflow etc. (But for example, I can see all the users)

I suspected that my activation key may expire, but I tried to install a new instance from scratch with a free trial license and a completely new database. However, I still received 403 errors. So, I guess the problem is not on my activation key.

I tried to pull an old version of n8n (1.94.0), but it did not work either.

Information on your n8n setup

  • **n8n version: latest (1.106.0)
  • **Database: PostgreSQL on AWS RDS
  • **Running n8n via docker compose on AWS EC2

Here’s my docker compose file:

version: "3.8"
services:
  n8n:
    image: docker.n8n.io/n8nio/n8n
    restart: unless-stopped
    env_file:
      - .env
    environment:
      # Database type (static)
      - DB_TYPE=postgresdb

      # General configuration
      - N8N_HOST=${SUBDOMAIN}.${DOMAIN_NAME}
      - N8N_PORT=5678
      - N8N_PROTOCOL=https
      - WEBHOOK_URL=https://${SUBDOMAIN}.${DOMAIN_NAME}/
      - GENERIC_TIMEZONE=${GENERIC_TIMEZONE}

      # Logging
      - N8N_LOG_LEVEL=${N8N_LOG_LEVEL}

      # Runners & security
      - N8N_RUNNERS_ENABLED=${N8N_RUNNERS_ENABLED}
      - N8N_ENFORCE_SETTINGS_FILE_PERMISSIONS=${N8N_ENFORCE_SETTINGS_FILE_PERMISSIONS}
    volumes:
      - n8n_data:/home/node/.n8n
    expose:
      - "5678"

  nginx:
    image: nginx:alpine
    restart: unless-stopped
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./nginx.conf:/etc/nginx/nginx.conf:ro
      - ./certs:/etc/nginx/certs:ro

volumes:
  n8n_data:

Here’s my .env file:

# PostgreSQL Credentials
DB_POSTGRESDB_HOST= xxxxxxxxx-east-2.rds.amazonaws.com
DB_POSTGRESDB_PORT=5432
DB_POSTGRESDB_DATABASE=postgres
DB_POSTGRESDB_USER=xxxxxxxxx
DB_POSTGRESDB_PASSWORD= xxxxxxxxx
DB_POSTGRESDB_SSL_ENABLED=true
DB_POSTGRESDB_SSL_REJECT_UNAUTHORIZED=false

# SMTP Credentials
N8N_SMTP_HOST=smtp.sendgrid.net
N8N_SMTP_PORT=465
N8N_SMTP_USER= xxxxxxxxx
N8N_SMTP_PASS= xxxxxxxxx
N8N_SMTP_SENDER= xxxxxxxxx

# General n8n config
DOMAIN_NAME= xxxxxxxxx.io
SUBDOMAIN=n8n
GENERIC_TIMEZONE=Europe/Istanbul
N8N_RUNNERS_ENABLED=true
N8N_ENFORCE_SETTINGS_FILE_PERMISSIONS=true

Do you have an idea what its cause is?

We realized that the problem occurred because of Cloudflare security rules, which we managed our DNS system. We created a custom WAF rule to skip actions “Managed Challenge, JS Challenge, Browser Integrity Check and Security Level” when http host is xxxxxx.io and request uri path starts with “/rest”.