Jump to content
dev osCommerce
Forum
  • Checkout
  • Login
  • Contact Us
  • Get in touch

osCommerce

The e-commerce.

New Demo
Our Partners

Just installed, but shows that SSL connection is not secure

Guest

By Guest
in General Support

Recommended Posts

Guest

Guest

Posted
Posted

I just finished installing this. Everything looks good. When I went into my admin control panel, I noticed in the lower left that it says my SSL connect is not secured.

 

I have searched the forums and haven't had any luck. I did fill in all the information that it asked for when I was installing.

 

Does anyone have any ideas?

 

Thanks in advice.

 

Jason

Guest

Guest

Posted
Posted

I have attached a screen shot to help clearify what I am seeing. Hopefully this will help.

 

admin.jpg

Guest

Guest

Posted
Posted
Edit the SSL configuration information in /admin/includes/configure.php

 

Joe

 

What should it say. Can you post an example so I can make sure that I entered it right.

ecgbyme

ecgbyme

Posted
Posted
I just finished installing this. Everything looks good. When I went into my admin control panel, I noticed in the lower left that it says my SSL connect is not secured.

 

I have searched the forums and haven't had any luck. I did fill in all the information that it asked for when I was installing.

 

Does anyone have any ideas?

 

Thanks in advice.

 

Jason

 

You have to edit the configure.php file found in catalog/includes/configure.php

There's 3 lines you need to change. If it's shared SSL you might have to contact your hoster to find out what the path is for your shared SSL. And enable SSL by changing to true. B)

 

define('HTTPS_SERVER', 'https://centos.securenet-server.net/~YOUR_USER_NAME/');

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'YOUR_DOMAIN.com');

define('HTTPS_COOKIE_DOMAIN', 'centos.securenet-server.net/~YOUR_USER_NAME/');

Guest

Guest

Posted
Posted
You have to edit the configure.php file found in catalog/includes/configure.php

There's 3 lines you need to change. If it's shared SSL you might have to contact your hoster to find out what the path is for your shared SSL. And enable SSL by changing to true. B)

 

 

This is what I have.

 

It still doesn't seem to work.

 

Any ideas?

 

define('HTTP_SERVER', 'http://www.netspantech.net'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://ssl.perfora.net/catalog.netspantech.net'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.netspantech.net');

define('HTTPS_COOKIE_DOMAIN', 'https://ssl.perfora.net/catalog.netspantech.net');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog.netspantech.net/');

ecgbyme

ecgbyme

Posted
Posted
This is what I have.

 

It still doesn't seem to work.

 

Any ideas?

 

define('HTTP_SERVER', 'http://www.netspantech.net'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://ssl.perfora.net/catalog.netspantech.net'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.netspantech.net');

define('HTTPS_COOKIE_DOMAIN', 'https://ssl.perfora.net/catalog.netspantech.net');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog.netspantech.net/');

 

The 2nd cookie domain line should be without the https:

define('HTTPS_COOKIE_DOMAIN', 'ssl.perfora.net/catalog.netspantech.net')
;

 

I'm not sure about the catalog. in the line if it should be there. Your Hoster tech support should tell you what the correct path should be. You could try

define('HTTPS_COOKIE_DOMAIN', 'ssl.perfora.net/netspantech.net');

 

But leave the https in the define HTTPS_SERVER

B)

Guest

Guest

Posted
Posted

Ok. I just finally got my include/configure.php file to work in the store. Turns out that I couldn't even log in or register an account.

 

Here are my settings.

define('HTTP_SERVER', 'http://www.netspantech.net'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://ssl.perfora.net/'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.netspantech.net');

define('HTTPS_COOKIE_DOMAIN', 'netspantech.net');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', 'catalog.netspantech.net/');

 

But I still have that not using secure connection in my admin area. Also, I do not see a padlock in my store when I am running.

 

I am using 1and1.com for webhosting and have a shared SSL.

 

Here is what my configure.php file in the admin/include/ directory looks like.

 

Maybe that is also wrong.

 

define('HTTP_SERVER', 'http://www.netspantech.net'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'http://www.netspantech.net');

define('HTTPS_CATALOG_SERVER', 'https://ssl.perfora.net/catalog.netspantech.net');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

 

Any additional info would be greatly appreciated.

AlanR

AlanR

Posted
Posted

You may never be able to get that little lock to close without modifying the admin/index.php file. This is the related code:

 

$contents = array();

 if (getenv('HTTPS') == 'on') {
$size = ((getenv('SSL_CIPHER_ALGKEYSIZE')) ? getenv('SSL_CIPHER_ALGKEYSIZE') . '-bit' : '<i>' . BOX_CONNECTION_UNKNOWN . '</i>');
$contents[] = array('params' => 'class="infoBox"',
					'text' => tep_image(DIR_WS_ICONS . 'locked.gif', ICON_LOCKED, '', '', 'align="right"') . sprintf(BOX_CONNECTION_PROTECTED, $size));
 } else {
$contents[] = array('params' => 'class="infoBox"',
					'text' => tep_image(DIR_WS_ICONS . 'unlocked.gif', ICON_UNLOCKED, '', '', 'align="right"') . BOX_CONNECTION_UNPROTECTED);
 }

 

Lots of servers give no response for getenv('SSL_CIPHER_ALGKEYSIZE') so the test fails.

 

You can tweak that code to create a different test if you like.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

AlanR

AlanR

Posted
Posted
Ok. I just finally got my include/configure.php file to work in the store. Turns out that I couldn't even log in or register an account.

 

Here are my settings.

 

 

I am using 1and1.com for webhosting and have a shared SSL.

 

Here is what my configure.php file in the admin/include/ directory looks like.

 

Maybe that is also wrong.

Any additional info would be greatly appreciated.

 

Make the configure.php look like this:

 

define('HTTP_SERVER', 'http://www.netspantech.net'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://ssl.perfora.net/netspantech.net'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'netspantech.net');

define('HTTPS_COOKIE_DOMAIN', 'ssl.perfora.net/netspantech.net');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

 

Basically the same goes for admin

 

If you have trouble with the padlock in ssl see:

 

http://www.oscommerce.com/forums/index.php?sho...23entry672623

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Guest

Guest

Posted
Posted

On my shared SSL cert from 1&1, should I make it for the whole site or just my catalog directory?

 

Also, I still have not gotten my SSL to work correctly. The admin section still shows it is unsecure.

 

Can someone give me some advice on how I should set up mine so that it will work correctly.

 

Thanks

ecgbyme

ecgbyme

Posted
Posted
On my shared SSL cert from 1&1, should I make it for the whole site or just my catalog directory?

 

Also, I still have not gotten my SSL to work correctly. The admin section still shows it is unsecure.

 

Can someone give me some advice on how I should set up mine so that it will work correctly.

 

Thanks

The shared SSL can work by only editing the configiure.php in the catalog side.

The admin side is protected by your user name & password.

For some reason the start panel always says that the site is not secure. I ignore it.

If your catalog/includes/configure.php file is set up right for shared SSL then you will see the lock come on when you proceed to checkout. B)

Guest

Guest

Posted
Posted

I believe that I finally got the configure.php file correct. The only thing now is that the padlock doesn't show, but my address does change to https://.

 

Any ideas on how to get that to appear. I do get the privacy report icon that shows up in IE.

on2dvd

on2dvd

Posted
Posted

Hi guys,

 

I have the same issue here. I have my configure.php file right (I think) and I get the padlock in the admin page (on the secure path) but any of the links from there are not using the https://

 

Here's my code

define('HTTP_SERVER', 'http://on2dvd.com.au'); // eg, http://localhost - should not be empty for productive servers

 

define('HTTPS_SERVER', 'https://secure.on2dvd.com.au); // eg, https://localhost - should not be empty for productive servers

 

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

 

define('HTTP_COOKIE_DOMAIN', 'on2dvd.com.au');

 

define('HTTPS_COOKIE_DOMAIN', 'secure.on2dvd.com.au);

 

define('HTTP_COOKIE_PATH', '/store/');

 

define('HTTPS_COOKIE_PATH', '/store/');

 

define('DIR_WS_HTTP_CATALOG', '/store/');

 

define('DIR_WS_HTTPS_CATALOG', '/store/');

 

define('DIR_WS_IMAGES', 'images/');

 

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

 

define('DIR_WS_INCLUDES', 'includes/');

 

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

 

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

 

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

 

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

 

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

ecgbyme

ecgbyme

Posted
Posted

[define('HTTPS_SERVER', 'https://secure.on2dvd.com.au);]

 

Did you confirm the SSL path with your web hoster. It may not end in your web site but in your user name if it is shared SSL.

on2dvd

on2dvd

Posted
Posted
[define('HTTPS_SERVER', 'https://secure.on2dvd.com.au);]

 

Did you confirm the SSL path with your web hoster. It may not end in your web site but in your user name if it is shared SSL.

 

 

Hi, I have been using this domain for a while (just with forms) so it is right. I have a dedicated SSL.

Archived

This topic is now archived and is closed to further replies.

Go to topic listing
×
×
  • Create New...