laurelsstitchery Posted January 25, 2006 Posted January 25, 2006 I'm trying to figure out a problem I'm having with my shopping cart. If I'm logged in, everything works fine. If I'm not logged in, I can't add items to the cart. I'm still testing the site and would like to get everything working by the end of January. My test site is http://laurelsstitchery.com/catalog. If anyone can help me with this, I would be very greatful. Laurel
laurelsstitchery Posted January 25, 2006 Author Posted January 25, 2006 This is a pretty urgent request and I've already tried all the fixes that I've found on the forums. Nothing has helped so far. Anyone? Laurel
Guest Posted January 25, 2006 Posted January 25, 2006 Its more of a configuration issue. And you have cookies enabled. Are you using a dedicated SSL for your site? (cuz it shows with a non valid certificate). Start by double checking the catalog\includes\configure.php and the cookies/SSL settings in the osc admin panel->configuration->sessions
laurelsstitchery Posted January 25, 2006 Author Posted January 25, 2006 Here's the catalog/includes/configure.php (with database info removed): <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright (c) 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://laurelsstitchery.com'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://laurelsstitchery.com'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'laurelsstitchery.com'); define('HTTPS_COOKIE_DOMAIN', 'laurelsstitchery.com'); define('HTTP_COOKIE_PATH', '/cgi'); define('HTTPS_COOKIE_PATH', ''); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/catalog/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', '/home/moosedog/laurelsstitchery.com/catalog/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' ?> and here's the sessions information: Session Directory /tmp Force Cookie Use True Check SSL Session ID False Check User Agent False Check IP Address False Prevent Spider Sessions False Recreate Session False Let me know if you see anything wrong. My browser doesn't show that there are any errors with the SSL certificate. It's a chained certificate from Godaddy.com. Everything was fine up until this morning. Its more of a configuration issue. And you have cookies enabled. Are you using a dedicated SSL for your site? (cuz it shows with a non valid certificate). Start by double checking the catalog\includes\configure.php and the cookies/SSL settings in the osc admin panel->configuration->sessions Laurel
laurelsstitchery Posted January 25, 2006 Author Posted January 25, 2006 Well, I turned the force cookies thing off and it seems to be working now. Thanks! :) Laurel
laurelsstitchery Posted January 25, 2006 Author Posted January 25, 2006 I do still need more info on the SSL certificate error that you're getting though and how I might fix it. Laurel
Guest Posted January 26, 2006 Posted January 26, 2006 Oh, this is just how your site is reported. Without an SSL installed. You should ask your host about it. If you gonna get a shared one then you can get the path an place it in the https_server fields on admin & catalog sides of the configure.php
laurelsstitchery Posted January 26, 2006 Author Posted January 26, 2006 The certificate is installed and according to my host, everything is working properly. When I go to http://laurelsstitchery.com and then double click on the padlock, it gives all the information about the certificate and says it's ok. Could you let me know where to get the information you're getting? Thanks! Oh, this is just how your site is reported. Without an SSL installed. You should ask your host about it. If you gonna get a shared one then you can get the path an place it in the https_server fields on admin & catalog sides of the configure.php Laurel
Guest Posted January 26, 2006 Posted January 26, 2006 Ok the config file indicates a dedicated SSL. When I access the secure site I get the "name of the security certificate is invalid" which means it does not match your domain name/url if you examine it (suppose to be dedicated right?). Also the whois dbase does not indicate that a valid ssl is installed. So ok say haven't updated my browser for sometime, I would still expect the whois to show up ok. http://www.whois.sc/laurelsstitchery.com All these is for production purposes not for testing/development of a certificate so I would not expect to see warnings going to a secure site as a customer. And I am not planning to disable the ssl warnings on my browser obviously.
laurelsstitchery Posted January 26, 2006 Author Posted January 26, 2006 Where do you receive the "name of the security certificate is invalid" warning? Is it some sort of popup? I get no warnings when I go to my site. I'm using IE 6.0 - what browser are you using? I don't know if this has anything to do with the problem, but the screenshot that whois is showing is extremely old. Maybe they just haven't updated with the new info yet? I'm going to run this by my host and see what they say. Let me know on the above questions. Thanks so much for taking the time to help me with this!!!!!!! :) Ok the config file indicates a dedicated SSL. When I access the secure site I get the "name of the security certificate is invalid" which means it does not match your domain name/url if you examine it (suppose to be dedicated right?). Also the whois dbase does not indicate that a valid ssl is installed. So ok say haven't updated my browser for sometime, I would still expect the whois to show up ok.http://www.whois.sc/laurelsstitchery.com All these is for production purposes not for testing/development of a certificate so I would not expect to see warnings going to a secure site as a customer. And I am not planning to disable the ssl warnings on my browser obviously. Laurel
Guest Posted January 26, 2006 Posted January 26, 2006 Where do you receive the "name of the security certificate is invalid" warning? Is it some sort of popup? I get no warnings when I go to my site. I'm using IE 6.0 - what browser are you using? I don't know if this has anything to do with the problem, but the screenshot that whois is showing is extremely old. Maybe they just haven't updated with the new info yet? I'm going to run this by my host and see what they say. Let me know on the above questions. Thanks so much for taking the time to help me with this!!!!!!! :) yes I get the warning when I visit your https link. You could remove the certificate with your browser ssl settings and you should then get the same warning. the whois info is updated instantly I think when you request the page info. For the image it doesn't and it shows underneath it the date of the last update. You can see the "cached whois" date for the site info if in doubt.
laurelsstitchery Posted January 26, 2006 Author Posted January 26, 2006 What browser are you using? If you to to http://laurelsstitchery.com/catalog/ using IE and double click on the padlock at the bottom of the screen, what does it say? yes I get the warning when I visit your https link. You could remove the certificate with your browser ssl settings and you should then get the same warning. the whois info is updated instantly I think when you request the page info. For the image it doesn't and it shows underneath it the date of the last update. You can see the "cached whois" date for the site info if in doubt. Laurel
laurelsstitchery Posted January 26, 2006 Author Posted January 26, 2006 Also, are you going to https://www.laurelsstitchery.com or https://laurelsstitchery.com? My SSL is for laurelsstitchery.com (no www) only. Laurel
Guest Posted January 26, 2006 Posted January 26, 2006 its ie6 and yes its the https that you defined in the configure.php file.
laurelsstitchery Posted January 26, 2006 Author Posted January 26, 2006 Do you get the same error on both of these pages? https://laurelsstitchery.com https://laurelsstitchery.com/catalog/ I don't understand why we're using the same browser, but seeing two different things. Let me know. Thanks! its ie6 and yes its the https that you defined in the configure.php file. Laurel
Guest Posted January 27, 2006 Posted January 27, 2006 no I no longer get any errors as the ssl is now working and its valid, so probably your host changed something.
laurelsstitchery Posted January 27, 2006 Author Posted January 27, 2006 Oh good! I sent them a service request this morning and then got busy with other things and forgot to check on it again. Hopefully all's well that ends well! Thank you SO much for taking the time to help me! :) no I no longer get any errors as the ssl is now working and its valid, so probably your host changed something. Laurel
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.