Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL not working as expected


bigbuddah

Recommended Posts

Our web site is up and running, but we seem to be having some problems with our SSL. When the config.php file has the ssl set to 'false' the site operates fine, but our customers won't order off the site as they're not seeing it as secure.

 

I waded through the help board here and found what I thought was the solution, by changing the false to true and defining the https server.

 

When doing that the site starts to enter the secure portion, but the the site gets all screwy and sends them somewhere else?

 

I'm new at this and my "designer" is of no use. Any ideas?

Link to comment
Share on other sites

do you have an ssl certificate or a shared ssl certificate?

the site will not work properly when set to true if you do not have an ssl.

 

who is your host? have you checked their faq's for ssl settings?

Link to comment
Share on other sites

do you have an ssl certificate or a shared ssl certificate?

the site will not work properly when set to true if you do not have an ssl.

 

who is your host?  have you checked their faq's for ssl settings?

 

 

 

Yes, we own the ssl. I'm right now working along the same lines as a previous posting. I believe it was titled SSL Padlock. I think you were helping here too...

 

I'm goign to try the portion about getting rid of the www. in my config files.

 

My host hasn't really been a lot of help either. he just keeps telling us that it's installed and working correctly, and that he's not in charge of the design porion of it.

Link to comment
Share on other sites

Yes, we own the ssl.  I'm right now working along the same lines as a previous posting.  I believe it was titled SSL Padlock. I think you were helping here too...

 

I'm goign to try the portion about getting rid of the www. in my config files.

 

My host hasn't really been a lot of help either. he just keeps telling us that it's installed and working correctly, and that he's not in charge of the design porion of it.

 

 

Ok, if it matters to anyone, I actually tried all the solutions in the posting mentioned above. Much like Samuel Mueller replied, I changed the ffirst define line to read:

 

define(HTTP_SERVER', 'https...... And now it appears that my site does actually work. My entire site is being viewed over a secure connection, but since I've been losing orders because it wasn't secure at all, I guess this is better than nothing.

 

If there is anyone out there that could either explain to me if this is good/bad, right/wrong, or any other way to fix the problem, I would greatly appreciate it.

Link to comment
Share on other sites

you do not want to set your whole site to ssl, as it slows it down dramatically. as Julian said, post your configure.php and we can review your settings.

without the database info, username, password

Link to comment
Share on other sites

you do not want to set your whole site to ssl, as it slows it down dramatically.  as Julian said, post your configure.php and we can review your settings.

without the database info, username, password

 

 

Ok....Here it is. As I have said, I've changed that first line... And I really appreciate the help.

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'https://www.twodogsoap.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', false); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.twodogsoap.com');

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

//Added for BTS1.0

define('DIR_WS_TEMPLATES', 'templates/');

define('DIR_WS_CONTENT', DIR_WS_TEMPLATES . 'content/');

define('DIR_WS_JAVASCRIPT', DIR_WS_INCLUDES . 'javascript/');

//End BTS1.0

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/home/*******/public_html/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

// define our database connection

define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', '******_store');

define('DB_SERVER_PASSWORD', '************');

define('DB_DATABASE', '*******_store');

define('USE_PCONNECT', 'false'); // use persistent connections?

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

?>

Link to comment
Share on other sites

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.twodogsoap.com');

define('HTTPS_SERVER', 'https://www.twodogsoap.com');

define('ENABLE_SSL', true);

define('HTTP_COOKIE_DOMAIN', 'www.twodogsoap.com');

define('HTTPS_COOKIE_DOMAIN', 'www.twodogsoap.com');

define('HTTP_COOKIE_PATH', '/');

Link to comment
Share on other sites

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.twodogsoap.com');

define('HTTPS_SERVER', 'https://www.twodogsoap.com');

define('ENABLE_SSL', true);

define('HTTP_COOKIE_DOMAIN', 'www.twodogsoap.com');

define('HTTPS_COOKIE_DOMAIN', 'www.twodogsoap.com');

define('HTTP_COOKIE_PATH', '/');

 

 

if I change it to this, then my site is redirected to some weird search page or crashes out as soon as I have to go to one of the secure site pages.

 

I'm beginning to think that someone sabotaged it from the get go....

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...