Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Looking for help


culpdesign

Recommended Posts

Hi all

 

Newbie here, sorry if this is in the wrong place...

 

I am a designer that worked with a programer on a site, and we used OSC. Cart is live and has been since last fall.

 

My interpretation of the issue at hand.

 

My client calls me and says that when a user is in the cart area, everything seems fine. They may leave, may order, may not log out. A new shopper comes in and perhaps tries to order, and the previous persons items and or account info seems to be crossing or mixing with the current user. Second user may also "see" the first account. If a new person tries to set up account, it may skip and go into an existing account. Obviously some security issues happening. Also the shopping cart allows you to put multiple items in but when you go to check out it only shows the 1st item. Also depending on what page of the store you are in it will show all of your items or sometimes just one. There is a mix of http and https pages.

 

We feel it is a cookie or session issue perhaps. Again I am not a programmer, and am just trying to help fix this or find a solution that may fix this. We have tried playing with session IDs, cookies, forced and otherwise. Some users may be clearing their internet cache.

 

Does this sound familar to anyone? Perhaps a setting or bug?

 

Any help would be greatly apprieciated.

Link to comment
Share on other sites

Hi all

 

Newbie here, sorry if this is in the wrong place...

 

I am a designer that worked with a programer on a site, and we used OSC.  Cart is live and has been since last fall.

 

My interpretation of the issue at hand.

 

My client calls me and says that when a user is in the cart area, everything seems fine.  They may leave, may order, may not log out.  A new shopper comes in and perhaps tries to order, and the previous persons items and or account info seems to be crossing or mixing with the current user.  Second user may also "see" the first account.  If a new person tries to set up account, it may skip and go into an existing account.  Obviously some security issues happening.  Also the shopping cart allows you to put multiple items in but when you go to check out it only shows the 1st item. Also depending on what page of the store you are in it will show all of your items or sometimes just one. There is a mix of http and https pages.

 

We feel it is a cookie or session issue perhaps.  Again I am not a programmer, and am just trying to help fix this or find a solution that may fix this.  We have tried playing with session IDs, cookies, forced and otherwise.  Some users may be clearing their internet cache.

 

Does this sound familar to anyone?  Perhaps a setting or bug?

 

Any help would be greatly apprieciated.

 

you are storing your sessions in the database and not in files?

Treasurer MFC

Link to comment
Share on other sites

Not sure on that.  Which should they be?

 

if you are on a shared host, put them in the database.

 

includes/configure.php:

 

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

Treasurer MFC

Link to comment
Share on other sites

if you are on a shared host, put them in the database.

 

includes/configure.php:

 

  define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

 

I have had my settings as above for some time but am still getting the problem described above. I have read a large number of threads and there seems to be no clear solution. Finally I have set force cookies to true, to see if this stops the problem, but don't feel this is an ideal solution.

Link to comment
Share on other sites

I remember reading something about this being caused by spiders accessing your site with session ids attached. Customers who come to the site via a search engine may inadverently be using the same session.

 

1st go in your admin and block all spider sessions. (hope this makes sense, too tired to to look for the correct verbage.)

 

then go to the contributions and look for "Spider Session Remover"

http://www.oscommerce.com/community/contributions,2819

 

Hope this helps.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...