Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Problem when custmer login: building wronng URL with SSL


Guest

Recommended Posts

Posted

Hi

 

I use a shared SSL from my host.

Here is my little problem: from the catalog page, when the customer successfuly logs in, he is redirected to a URL with a wrong path, with: catalog//catalog rendered twice, which of course returns a 404

 

https://securehost.com/~a32604/catalog//catalog/index.php

 

Please note that the customer IS LOGGED after this (click on my account displays the account).

 

The thing that bothers me is the fact that this problem only occurs fron the catalog index page: when I'm shopping, add stuff to my cart and then am asked to login when I check out, I land on the good page. So the problem is less likely my configure .php file (which I tried to tweak, but I just break the site doing this.

 

I am requesting some help to find WHERE this double catalog//catalog is rendered when I log from the catalog page only. I digged in the includes, but couldn't find where this URL was build.

 

Thanks.

Posted

two files you could look into for paths/redirection and correct them

 

catalog\includes\configure.php

catalog\.htaccess

Posted

this is my catalog\htaccess:

 

-------------------------------------------------------------------

 

# $Id: .htaccess,v 1.3 2003/06/12 10:53:20 hpdl Exp $

#

# This is used with Apache WebServers

#

# For this to work, you must include the parameter 'Options' to

# the AllowOverride configuration

#

# Example:

#

# <Directory "/usr/local/apache/htdocs">

# AllowOverride Options

# </Directory>

#

# 'All' with also work. (This configuration is in the

# apache/conf/httpd.conf file)

 

# The following makes adjustments to the SSL protocol for Internet

# Explorer browsers

 

<IfModule mod_setenvif.c>

<IfDefine SSL>

SetEnvIf User-Agent ".*MSIE.*" \

nokeepalive ssl-unclean-shutdown \

downgrade-1.0 force-response-1.0

</IfDefine>

</IfModule>

 

# If Search Engine Friendly URLs do not work, try enabling the

# following Apache configuration parameter

#

# AcceptPathInfo On

 

# Fix certain PHP values

# (commented out by default to prevent errors occuring on certain

# servers)

#

#<IfModule mod_php4.c>

# php_value session.use_trans_sid 0

# php_value register_globals 1

#</IfModule>

-------------------------------------------------------------------

-------------------------------------------------------------------

-------------------------------------------------------------------

 

this is my configure.php:

 

 

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.frenchybee.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://secure19.prohosting.com/~axxxxxx/catalog/'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.mydomain.com');

define('HTTPS_COOKIE_DOMAIN', 'www. mydomain.com');

define('HTTP_COOKIE_PATH', '');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/usr/home/web/users/xxxxxxx/html/catalog/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

// define our database connection

define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', 'xxxxxx');

define('DB_SERVER_PASSWORD', 'xxxxxx');

define('DB_DATABASE', 'xxxxxx');

define('USE_PCONNECT', 'false'); // use persistent connections?

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

?>

--------------------------------------------------------------------------------------------------------------------------------------

 

anything wrong with this?

 

Thanks!

Posted

yea there you go

 

define('HTTPS_SERVER', 'https://secure19.prohosting.com/~axxxxxx/catalog/'); // eg,

 

it's best to use the domain root and keep the path to the appropriate definition. That should been

 

https://secure19.prohosting.com/~axxxxxx

 

and your cookies path are empty. So you cannot use them at the moment.

Posted

Continuing on this, I just set up my SSL

 

does the https and http addresses need to be different? in my case can they both be

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.memorylaneprimitives.com/'); // eg, http://localhost - should not be empty for productive

servers

define('HTTPS_SERVER', 'https://www.memorylaneprimitives.com/'); // eg, https://localhost - should not be empty for producti

ve servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.memorylaneprimitives.com');

define('HTTPS_COOKIE_DOMAIN', '');

// next line was /catalog/

define('HTTP_COOKIE_PATH', 'www.memorylaneprimitives.com');

define('HTTPS_COOKIE_PATH', 'www.memorylaneprimitives.com');

// next line was /catalog/

define('DIR_WS_HTTP_CATALOG', '');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_FS_DOCUMENT_ROOT', '/home/beth/');

 

 

It seems as though the secure pages are only half secure due to the images.. Firefox shows a padlock with a red line through it (not open, it is secure) but possibly indicating only half way - which would only be the images and not the data.. No warnings though.

 

 

 

 

yea there you go

 

define('HTTPS_SERVER', 'https://secure19.prohosting.com/~axxxxxx/catalog/'); // eg,

 

it's best to use the domain root and keep the path to the appropriate definition. That should been

 

https://secure19.prohosting.com/~axxxxxx

 

and your cookies path are empty. So you cannot use them at the moment.

My Contributions

 

Henry Smith

Posted
does the https and http addresses need to be different? in my case can they both be

with shared ssl they are different and your host should provide the details

 

with dedicated certificates you have the option to choose various things like encryption level.

Posted

I meant difference in behavior in Oscommerce: does OSC need some customization with shared SSL and not with true SSL. Because I think this the reason of my problem. (the bad redirection fron the greeting page)

 

In fact, I'm looking for the file that creates the tep_customer_greeting() function

 

 

 

Thanks

Posted
enigma1 @ Mar 6 2006, 12:56 PM)

 

yea there you go

 

define('HTTPS_SERVER', 'https://secure19.prohosting.com/~axxxxxx/catalog/'); // eg,

 

it's best to use the domain root and keep the path to the appropriate definition. That should been

 

https://secure19.prohosting.com/~axxxxxx

 

and your cookies path are empty. So you cannot use them at the moment.

 

No improvement with this...

Posted

ok.. nevermind I got that fixed.. but a new problem arises

 

Firefox and IE work fine on my system and FF works fine on my wifes system, but for some odd reason my wife and my father have the same problem when they use IE. When going to

 

http://www.mydomain.com

 

the status bar shows

 

loading.. https://www.mydomain.com/logoff.php?.....

 

And then redirects them to https://www.mydomain.com/index.php

 

Any thoughts??

My Contributions

 

Henry Smith

Posted
I meant difference in behavior in Oscommerce: does OSC need some customization with shared SSL and not with true SSL. Because I think this the reason of my problem. (the bad redirection fron the greeting page)

 

In fact, I'm looking for the file that creates the tep_customer_greeting() function

Thanks

there is no difference.

 

for the logoff, check also the .htaccess file of the catalog directory.

Posted
there is no difference.

 

for the logoff, check also the .htaccess file of the catalog directory.

 

 

I posted my htaccess above. Anything wrong with this?

Posted

I see, I thought you mentioned other systems but I guess you meant just other pc systems browsing the site using FF or IE. That would be browser issues I guess or something specific with these PCs.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...