setup shared SSL plus ipowerweb host

[Guest]

hello im hosting with ipowerweb and was wondering can i set up SSL when people are

 

buy a product using PWA , so as there information is kept secure, not totally needed but secure is best

 

creating an account would definately need SSL doing this i feel, if i get rid of create an account if this is possible that might solve a few problems as i cant create an account and log back in.

 

i dont know if i really need SSL but since i have a shared cert i might as well make the most of it.

 

any advice great

 

thanxs titch

[primadude]

hello im hosting with ipowerweb and was wondering can i set up SSL when people are

 

buy a product using PWA , so as there information is kept secure, not totally needed but secure is best

 

creating an account would definately need SSL doing this i feel, if i get rid of create an account if this is possible that might solve a few problems as i cant create an account and log back in.

 

i dont know if i really need SSL but since i have a shared cert i might as well make the most of it.

 

any advice great

 

thanxs titch

 

Yes. I use iPowerWeb and also the PWA Contribution. From the moment the customer hits the Checkout button, they use the Shared iPowerWeb SSL certificate.

 

Here are the changes I made to use the iPowerWeb Shared SSL certificate and also to SSL encrypt my OSC Administration page. Note that I have moved my site from /somedir/catalog to the root / so you will need to accomodate those changes on your site accordingly.

 

In /catalog/includes/configure.php

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.yourwebsite.com');

define('HTTPS_SERVER', 'https://hostXXX.ipowerweb.com/~sitename');

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.yourwebsite.com');

define('HTTPS_COOKIE_DOMAIN', 'hostXXX.ipowerweb.com/~sitename');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '/');

define('DIR_WS_HTTP_CATALOG', '/');

define('DIR_WS_HTTPS_CATALOG', '/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/home/sitename/public_html/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

 

In /admin/includes/catalog.php

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'https://hostXXX.ipowerweb.com');

define('HTTP_CATALOG_SERVER', 'https://hostXXX.ipowerweb.com');

define('HTTPS_CATALOG_SERVER', 'https://hostXXX.ipowerweb.com');

define('ENABLE_SSL_CATALOG', true); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/home/sitename/public_html/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/~sitename/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/home/sitename/public_html/admin/'); // absolute path required

define('DIR_WS_CATALOG', '/~sitename/'); // absolute path required

define('DIR_FS_CATALOG', '/home/sitename/public_html/'); // absolute path required

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');

define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');

define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

 

That should do it...let me know if it works for you...

 

Joe

[tim_o_boy]

If the hosting company provides a shared certificate then they should be able to give you some help about how to apply it to your site. You then need to do a search on these forums to make sure you know how to set up the includes/configure.php so that security sensitive areas of the site use SSL.

 

As you say, if you've got a shared cert., why not use it? It can help build customer confidence (if done right) and technically you are liable for customers' details being stolen when they enter them in your site. This can be virtually eliminated using SSL correctly.

[Guest]

Yes. I use iPowerWeb and also the PWA Contribution. From the moment the customer hits the Checkout button, they use the Shared iPowerWeb SSL certificate.

 

Here are the changes I made to use the iPowerWeb Shared SSL certificate and also to SSL encrypt my OSC Administration page. Note that I have moved my site from /somedir/catalog to the root / so you will need to accomodate those changes on your site accordingly.

 

In /catalog/includes/configure.php

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.yourwebsite.com');

define('HTTPS_SERVER', 'https://hostXXX.ipowerweb.com/~sitename');

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.yourwebsite.com');

define('HTTPS_COOKIE_DOMAIN', 'hostXXX.ipowerweb.com/~sitename');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '/');

define('DIR_WS_HTTP_CATALOG', '/');

define('DIR_WS_HTTPS_CATALOG', '/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/home/sitename/public_html/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

In /admin/includes/catalog.php

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'https://hostXXX.ipowerweb.com');

define('HTTP_CATALOG_SERVER', 'https://hostXXX.ipowerweb.com');

define('HTTPS_CATALOG_SERVER', 'https://hostXXX.ipowerweb.com');

define('ENABLE_SSL_CATALOG', true); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/home/sitename/public_html/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/~sitename/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/home/sitename/public_html/admin/'); // absolute path required

define('DIR_WS_CATALOG', '/~sitename/'); // absolute path required

define('DIR_FS_CATALOG', '/home/sitename/public_html/'); // absolute path required

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');

define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');

define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

 

That should do it...let me know if it works for you...

 

Joe

 

 

thanxs joe i think i had it running before i got to your post, thanxs anyway always helpful to see an example.

 

now the problem i have is in the stored sessions ( i think there)

 

what is happenning i can purchase without account in https cool, and when i create an account okay goes alright.

 

now when i go back to login to that user i get the page ( your personal info) coming up again and you have to fill it in again, is it just supposed to go to a page with password & email address for login ( i havnt seen this so i hope you dont need to fill out the info again

 

would you mind going to my site ( if you have time, if not no worries ) and try the create account procedure & login again to see if it works.

 

http://www.hypertech.co.nz

 

do you think i shoul leave creat an account in their as most people will PWA anyway , and can this be disabled.

 

sorry long email, but this and a few store css file changes and im away, well good enough to start selling.

 

thanxs derek

[primadude]

titch, you are right, that is exactly what is occuring. After you enter your information and return later, you have the option to login. If you attempt to login, you have to fill in your contact information again and there is no logout. It does not seem right and will confuse customers I think...I use PWA as an option but also still let users create an account. My site is not production ready I am not comfortable posting it yet so I will PM my URL so you can check it out.

 

Joe