Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Please help me with my shared SSL


SunnyWales

Recommended Posts

Please will somebody take pity on me. I have searched for two days for the answer to my problem. I can find lots of answers to the question about shared SSL and how to configure it - however, there are also lots (and lots) of contridicting advice.

 

I have managed to find two messages which say the same thing Vger and the Bear - both of whom are very knowledgeable about this. However, their advice is not working for me.

 

I'm working on my catalog/includes/configure.php. This currently reads:

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright ? 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.spreadalittlesunshine.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'vaultxx.secured-url.com/name'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.spreadalittlesunshine.com');

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

As far as I understand, these are all correct, but please let me know if something is wrong. When a customer points to something which requires SSL like account login, its pointing to http://www.spreadalittlesunshine.com/catal...t.php?sessionid

 

I'm unable to copy my catalog folder into my SSL folder as it only has 10mb of space.

 

Does anybody have any suggestions please!!!

Wendy

 

 

Go on spread some sunshine!

Link to comment
Share on other sites

If you have a seperate ssl folder then you have to copy your oscommerce files to it for the shared ssl to work. As there is not enough space to do this you will need to host elsewhere.

 

You could try this, but I doubt it'll work.

 

define('HTTPS_SERVER', 'https://vaultxx.secured-url.com/name');

 

Vger

Link to comment
Share on other sites

Vger

 

Thanks so much for your reply. After reading the hundreds of messages about shared SSL I had come to the conclusion that I would need to duplicate my files so that they're in both directories. Great!

 

My hosts are fine. Quite cheap but with huge amount of space. I think i won't worry about SSL anymore. My only payment options are cheque, Nochex or Paypal (both of which have their own secure pages).

 

Just one thought - will I need SSL for customers to register to keep their address etc safe?

 

Wendy

Wendy

 

 

Go on spread some sunshine!

Link to comment
Share on other sites

Without ssl when customers click to send you their details they are sending the information unencrypted and could be intercepted by any hacker. It could even be read from the screen by certain spyware programmes. I would never use a website that did not protect my details with ssl. The lack of ssl also makes the 'admin' part of your site more open to hacking.

 

I tell you this as an ex-Rhymney Valley girl - well middle aged woman actually.

 

Vger

Link to comment
Share on other sites

Thanks for that Vger. Looks like I'll need to look at better hosting then. Bummer - paid up front for a couple of months.

 

Rhymney valley - that's why you're so down to earth.

 

Thanks for the advice.

 

Wendy

Wendy

 

 

Go on spread some sunshine!

Link to comment
Share on other sites

I'm still working on this. :blink:

 

I've changed (and changed and changed) my configure files.

 

My catalog/includes/configure.php file now reads:

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.spreadalittlesunshine.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://vaultxx.secured-url.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'spreadalittlesunshine.com');

define('HTTPS_COOKIE_DOMAIN', 'vault1.secured-url.com');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/~secureSALS/catalog/');

 

and my catalog/admin/includes/configure.php file reads:

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.spreadalittlesunshine.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', '/catalog/');

define('HTTPS_CATALOG_SERVER', '/~secureSALS/catalog/');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

 

When I try to log in as a customer using this I get:

 

Warning: Unknown(e:\blank\~secureSALS\catalog\login.php): failed to create stream: No such file or directory in Unknown on line 0

 

Warning: Unknown(): Failed opening 'e:\blank\~secureSALS\catalog\login.php' for inclusion (include_path='.;c:\php4\pear') in Unknown on line 0

 

However, if I take the ~ out before secureSALS/catalog, I get:

 

FATAL ERROR: register_globals is disabled in php.ini, please enable it!

 

I've checked with my host who have told me that register_globals is enabled and that safe mode is off. They have php scripts enabled.

 

I'm looking for the answer both here and in my host's forum (which is worse than useless).

 

Can anybody help, please?

 

Wendy

Wendy

 

 

Go on spread some sunshine!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...