Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Problems with SSL and OS Commerce


Guest

Recommended Posts

Hi everybody, I recently had an SSL certificate installed by my webhost (lunarpages.com) and I'm having some trouble getting it to work right. I have been searching and following instructions on this forum for a while now with no luck so i decided to ask..

 

Here's the code in my includes/config.php file:

  define('HTTP_SERVER', 'http://www.neblinarecords.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'https://www.neblinarecords.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', true); // secure webserver for checkout procedure?
 define('HTTP_COOKIE_DOMAIN', 'www.neblinarecords.com');
 define('HTTPS_COOKIE_DOMAIN', 'www.neblinarecords.com');
 define('HTTP_COOKIE_PATH', '/catalog/');
 define('HTTPS_COOKIE_PATH', '/catalog/');
 define('DIR_WS_HTTP_CATALOG', '/catalog/');
 define('DIR_WS_HTTPS_CATALOG', '/catalog/');

 

My store is at https://www.neblinarecords.com/catalog/index.php. One question i have is, shouldn't the whole store be secure? Not just secure when you go to check out?

 

Right now if you go to my store's home page and click any link, it takes you right back to http:// mode. Any suggestions as to what I'm doing wrong????

Thanks in advance.

Link to comment
Share on other sites

actually here is my admin/includes/configure.php file as well:

define('HTTP_SERVER', 'http://www.neblinarecords.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://www.neblinarecords.com');
 define('HTTPS_CATALOG_SERVER', 'https://www.neblinarecords.com');
 define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

Link to comment
Share on other sites

The warnings were coming from your images.

 

Do not hard-code in absolute paths for your images.

 

Example:

src="http://www.neblinarecords.com/images/Fear_and_Loathing_Store_Home_150.jpg"

to

src="images/Fear_and_Loathing_Store_Home_150.jpg"

Link to comment
Share on other sites

My store is at https://www.neblinarecords.com/catalog/index.php. One question i have is, shouldn't the whole store be secure? Not just secure when you go to check out?

If setup correctly, osCommerce should be working under SSL only when sensitive information are being transfer on the internet. Checkout and Login pages etc. contain those private information. amazon.com is a good example.

 

another note (since i can't edit my posts) - I get the "this page contains secure and non secure items" in IE, but not in Firefox...

In this case, Internet Explorer is a saint. It helps you catch errors before your customers do!

 

Good luck! :thumbsup:

Link to comment
Share on other sites

Hey guys, thanks a mil for your quick responses. I bet that's what my problem is.

Listen though, im trying to recode my images, but i'm having some trouble.

 

For example,

http://www.neblinarecords.com/catalog/images/VISA.jpg

 

should be

 

../images/VISA.jpg

 

right?

 

my STS_Template.html (the images are referenced in there) is in my catalog/includes folder. So that would mean, go up one level, then into images folder right? Wonder what I'm doing wrong...

 

Thanks again guys.

Link to comment
Share on other sites

what is with the red background???? I changed everything to non absolute URLs and i get a red background, none of my regular template design shows (a few images do)

 

Also, I'm trying to figure out my logo (in the header). I opened header.php and it says

  <tr class="header">
   <td valign="middle"><?php echo '<a href="' . tep_href_link(FILENAME_DEFAULT) . '">' . tep_image(DIR_WS_IMAGES . 'logo.jpg', 'osCommerce') . '</a>'; ?></td>
   <td align="right" valign="bottom"><?php echo '<a href="' . tep_href_link(FILENAME_ACCOUNT, '', 'SSL') . '">' . tep_image(DIR_WS_IMAGES . 'pixel_trans.gif', HEADER_TITLE_MY_ACCOUNT) . '</a>  <a href="' . tep_href_link(FILENAME_SHOPPING_CART) . '">' . tep_image(DIR_WS_IMAGES . 'pixel_trans.gif', HEADER_TITLE_CART_CONTENTS) . '</a>  <a href="' . tep_href_link(FILENAME_CHECKOUT_SHIPPING, '', 'SSL') . '">' . tep_image(DIR_WS_IMAGES . 'pixel_trans.gif', HEADER_TITLE_CHECKOUT) . '</a>'; ?>  </td>
 </tr>

 

As you can see it points to logo.jpg, not http://www.neblinarecords.com/catalog/images/logo.jpg

Link to comment
Share on other sites

which problem exactly? do u have the certificate installed by your host? Is it full on ssl or shared?

 

Problems:

The secure stuff? (caused by images)

or just in general? (take a look at my config files..)

Link to comment
Share on other sites

When I try to access "login.php"(which is in the 'public_html/shop/login.php' directory), I get "the connection to dandlgroceries.com has been terminated unexpectedly, some data may have been transfered." I can only connect to it when I hardcode the link to the login.php file with "http://" instead of "https://". I am on a shared SSL connection through siteflip hosting.

 

Here is my config file:

 

define('HTTP_SERVER', 'http://dandlgroceries.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://dandlgroceries.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'dandlgroceries.com');

define('HTTPS_COOKIE_DOMAIN', 'dandlgroceries.com');

define('HTTP_COOKIE_PATH', '/shop/');

define('HTTPS_COOKIE_PATH', '/shop/');

define('DIR_WS_HTTP_CATALOG', '/shop/');

define('DIR_WS_HTTPS_CATALOG', '/shop/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/home/dandlgro/public_html/shop/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

Link to comment
Share on other sites

ok there's your problem! As far as i was led to believe, you need dedicated SSL, not shared.

 

That means a dedicated IP address, and buying your own personal SSL certificate...

 

Hope this helps!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...