Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Shared SSL not working


bduncs

Recommended Posts

Hi,

 

I have been reading all the posts about SSL and am having no luck getting my checkout secure. Site is in development, but can be viewed at www.barndale.com/catalog. I am also using the Purchase without Account contribution if that has any affect on this situation.

 

Below is my configure.php for catalog...

 

define('HTTP_SERVER', 'http://barndale.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://barndale.hostexcellence.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL',true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'barndale.com');

define('HTTPS_COOKIE_DOMAIN', 'barndale.com');

define('HTTP_COOKIE_PATH', '');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

define('DIR_WS_IMAGES', '/catalog/images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']));

 

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

 

 

Sessions settings are...

Session Directory /tmp

Force Cookie Use True

Check SSL Session ID True

Check User Agent False

Check IP Address False

Prevent Spider Sessions False

Recreate Session False

 

 

Please help! :'(

Link to comment
Share on other sites

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '');

 

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql')

 

 

Force Cookie Use False (can't use it with shared ssl)

Check SSL Session ID False

Prevent Spider Sessions True

 

Vger

Link to comment
Share on other sites

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '');

 

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql')

Force Cookie Use False (can't use it with shared ssl)

Check SSL Session ID False

Prevent Spider Sessions True

 

Vger

 

Thanks for the help. I tried those changes, but still no https when I click checkout.

 

Any other thoughts? :'(

Link to comment
Share on other sites

I missed this the first time (it's wrong but does not affect your checkout problem).

 

define('DIR_WS_IMAGES', '/catalog/images/');

 

should be

 

define('DIR_WS_IMAGES', 'images/');

 

Other than that I don't know what's going on with being unable to use the shared ssl. When I look at your site it's not pointing to ssl so I am unable to check it out. You could check with your hosting company to see if they use one of those awful two-folder systems (one folder for http docs and another one for https docs). If they do use that system then you need to copy all of your files/folders in httpdocs to httpsdocs.

 

Are you aware that there is no way that anyone who has registered for an account can login to your site? The only link is to create an account, and not to login again if an account has already been created.

 

Vger

Link to comment
Share on other sites

Other than that I don't know what's going on with being unable to use the shared ssl.  When I look at your site it's not pointing to ssl so I am unable to check it out.  You could check with your hosting company to see if they use one of those awful two-folder systems (one folder for http docs and another one for https docs).  If they do use that system then you need to copy all of your files/folders in httpdocs to httpsdocs.

 

Are you aware that there is no way that anyone who has registered for an account can login to your site?  The only link is to create an account, and not to login again if an account has already been created.

 

Vger

 

Thanks. I forgot to remove the My Account link in the header after I implemented purchase without account. There are no user accounts on this site, so no logging in. Users proceed directly to checkout.

 

I can view the site in https if I point directly to it (i.e. https://barndale.com/catalog/order_info.php?osCsid= ). So I don't think I have a two folder probelm since the site looks ok that way.

 

The problem is that the site is not moving over to https when the user clicks the checkout link.

 

-Brian

Link to comment
Share on other sites

Thanks. I forgot to remove the My Account link in the header after I implemented purchase without account.  There are no user accounts on this site, so no logging in.  Users proceed directly to checkout.

 

I can view the site in https if I point directly to it (i.e. https://barndale.com/catalog/order_info.php?osCsid= ).  So I don't think I have a two folder probelm since the site looks ok that way.

 

The problem is that the site is not moving over to https when the user clicks the checkout link.

 

-Brian

 

 

I figured out my problem. Posting solution for any others who may experience this.

 

There was another configure.php located at /catalog/includes/local/configure.php. This had a "define('ENABLE_SSL', 0);". I changed this to "define('ENABLE_SSL', 1);" and no everything is working fine.

 

Not sure if this is specific to the way my host service installed oscommerce or not, but figured I would shared my resolution.

 

Thanks all for you help and quick responses!

 

-Brian :D

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...