Q. I am getting a Forbidden 403 error after I've changed the DocumentRoot in Apache for my domain. What do I do?
A. The solution is quite simple:
Edit the apache2.conf (/etc/apache2/apache2.conf) and add the new directory to default security model:
<Directory /your/new/dir>
Options Indexes FollowSymLinks
AllowOverride None
Require all granted
</Directory>
Restart apache and you're done
Source: https://www.altconsulting.com/kb/linux/136-403-forbidden-after-changing-documentroot-directory