Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL and login problems


Guest

Recommended Posts

hello i hope this goes in the right place,

 

i seem to have a problem with my SSL settings and logging in to account procedure.

 

I have purchase without account installed and can get through procedure going into https and ordering products.

 

i can create an account (dummy one ) , but when i go to login again i seem to get the your personal details info page up again.

 

can anyone help with or steer me in the right direction, i have been working on this for a while, but need to get this fixed.

 

do i really need SSL as customers will pay direct into bank account, but i feel it isd more professional to have the SSL feature anyway.

 

http://www.hypertech.co.nz site is out their but no one knows about it anyway ( till now)

below catalog/includes/config file

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://hypertech.co.nz'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://host259.ipowerweb.com/~hypertec/'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'hypertech.co.nz');

define('HTTPS_COOKIE_DOMAIN', 'https://host259.ipowerweb.com');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

 

 

below catalog/admin/includes/ config file

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://hypertech.co.nz'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'http://hypertech.co.nz');

define('HTTPS_CATALOG_SERVER', '');

define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/home/hypertec/public_html/catalog/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/home/hypertec/public_html/catalog/admin/'); // absolute pate required

define('DIR_WS_CATALOG', '/catalog/'); // absolute path required

define('DIR_FS_CATALOG', '/home/hypertec/public_html/catalog/'); // absolute path required

 

 

below sessions file

 

Session Directory /tmp

Force Cookie Use False

Check SSL Session ID False

Check User Agent True

Check IP Address False

Prevent Spider Sessions True

Recreate Session True

 

if theirs any one to help thanxs very much as i feel im changing things around but going in circles.

 

titch

Link to comment
Share on other sites

hello i hope this goes in the right place,

 

i seem to have a problem with my SSL settings and logging in to account procedure.

 

I have purchase without account installed and can get through procedure going into https and ordering products.

 

i can create an account (dummy one ) , but when i go to login again i seem to get the your personal details info page up again.

 

can anyone help with or steer me in the right direction, i have been working on this for a while, but need to get this fixed.

 

do i really need SSL as customers will pay direct into bank account, but i feel it isd more professional to have the SSL feature anyway.

 

http://www.hypertech.co.nz site is out their but no one knows about it anyway ( till now)

below catalog/includes/config file

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://hypertech.co.nz'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://host259.ipowerweb.com/~hypertec/'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'hypertech.co.nz');

define('HTTPS_COOKIE_DOMAIN', 'https://host259.ipowerweb.com');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

below catalog/admin/includes/ config file

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://hypertech.co.nz'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'http://hypertech.co.nz');

define('HTTPS_CATALOG_SERVER', '');

define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/home/hypertec/public_html/catalog/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/home/hypertec/public_html/catalog/admin/'); // absolute pate required

define('DIR_WS_CATALOG', '/catalog/'); // absolute path required

define('DIR_FS_CATALOG', '/home/hypertec/public_html/catalog/'); // absolute path required

below sessions file

 

Session Directory /tmp

Force Cookie Use False

Check SSL Session ID False

Check User Agent True

Check IP Address False

Prevent Spider Sessions True

Recreate Session True

 

if theirs any one to help thanxs very much as i feel im changing things around but going in circles.

 

titch

 

well i have changed a few things , but the problem is i have enabled force cookie use, is this appropiate, when i go to log in i get this in the address path in url the double forward slash gets me thinking

https://host259.ipowerweb.com/~hypertec//ca...nfo.php?osCsid=

 

since my last post i have added this to the above code ~hypertec

check session id to true

 

does anybody have an opinion. im running on Ipowerweb on shared SSL cert thanxs derek

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...