Guest Posted March 19, 2006 Posted March 19, 2006 Hi, When someone tries to access my homepage for my store, the browser at first tries to go to the HTTP:// address, then after a couple of seconds it redirects to the HTTPS://, so my home page is SSL protected. I dont want this as i feel the SSL protection is putting alot of people of. I have been told that i can edit the script in the header.php file to stop this redirect, but i can't work out what to do. Is there anyone who can help? My header.php file looks like this: <?php /* $Id: header.php,v 1.42 2003/06/10 18:20:38 hpdl Exp $ osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // check if the 'install' directory exists, and warn of its existence if (WARN_INSTALL_EXISTENCE == 'true') { if (file_exists(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/install')) { $messageStack->add('header', WARNING_INSTALL_DIRECTORY_EXISTS, 'warning'); } } // check if the configure.php file is writeable if (WARN_CONFIG_WRITEABLE == 'true') { if ( (file_exists(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/includes/configure.php')) && (is_writeable(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/includes/configure.php')) ) { $messageStack->add('header', WARNING_CONFIG_FILE_WRITEABLE, 'warning'); } } // check if the session folder is writeable if (WARN_SESSION_DIRECTORY_NOT_WRITEABLE == 'true') { if (STORE_SESSIONS == '') { if (!is_dir(tep_session_save_path())) { $messageStack->add('header', WARNING_SESSION_DIRECTORY_NON_EXISTENT, 'warning'); } elseif (!is_writeable(tep_session_save_path())) { $messageStack->add('header', WARNING_SESSION_DIRECTORY_NOT_WRITEABLE, 'warning'); } } } // check session.auto_start is disabled if ( (function_exists('ini_get')) && (WARN_SESSION_AUTO_START == 'true') ) { if (ini_get('session.auto_start') == '1') { $messageStack->add('header', WARNING_SESSION_AUTO_START, 'warning'); } } if ( (WARN_DOWNLOAD_DIRECTORY_NOT_READABLE == 'true') && (DOWNLOAD_ENABLED == 'true') ) { if (!is_dir(DIR_FS_DOWNLOAD)) { $messageStack->add('header', WARNING_DOWNLOAD_DIRECTORY_NON_EXISTENT, 'warning'); } } if ($messageStack->size('header') > 0) { echo $messageStack->output('header'); } ?> <script language="JavaScript" type="text/JavaScript"> <!-- function MM_preloadImages() { //v3.0 var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array(); var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++) if (a.indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a;}} } //--> </script> <table border="0" width="747" cellspacing="0" cellpadding="0" align="center"> <tr> <td valign="top" background="" class=""><span class="topheaderNavigation"> <object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" width="747" height="271"> <param name="movie" value="31impression_1.swf"> <param name="quality" value="high"> <embed src="31impression_1.swf" quality="high" pluginspage="http://www.macromedia.com/go/getflashplayer" type="application/x-shockwave-flash" width="737" height="271"></embed> </object> </span></td> </tr> </table> <?php if (isset($HTTP_GET_VARS['error_message']) && tep_not_null($HTTP_GET_VARS['error_message'])) { ?> <table border="0" width="747" cellspacing="0" cellpadding="0" align="center"> <tr class="headerError"> <td class="headerError"><?php echo htmlspecialchars(urldecode($HTTP_GET_VARS['error_message'])); ?></td> </tr> </table> <?php } if (isset($HTTP_GET_VARS['info_message']) && tep_not_null($HTTP_GET_VARS['info_message'])) { ?> <table border="0" width="747" cellspacing="0" cellpadding="0" align="center"> <tr class="headerInfo"> <td class="headerInfo"><?php echo htmlspecialchars($HTTP_GET_VARS['info_message']); ?></td> </tr> </table> <?php } ?> Where can i put the code to stop the re-direct to HTTPS? And what code would i need? Thanks for any help.
bobg7 Posted March 19, 2006 Posted March 19, 2006 post your includes/configure.php file here - minus the database login information Installed Contributions: CCGV, Close Popup, Dynamic Meta Tags, Easy Populate, Froogle Data Feeder, Google Position, Infobox Header Entire Row, Live Support for OSC, PayPal Seal with CC images, Report_m Sales, Shop by Price Revised, SQL Updater, Who's Online Enhancement, Footer, GNA EP Assistant and still going.
Guest Posted March 19, 2006 Posted March 19, 2006 Heres my includes/configure file: <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.rocksupplies.net'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://spartan.xssl.net/rocksupplies.net'); // eg, https://spartan.xssl.net/rocksupplies - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.rocksupplies.net'); define('HTTPS_COOKIE_DOMAIN', ''); define('HTTP_COOKIE_PATH', '/'); define('HTTPS_COOKIE_PATH', ''); define('DIR_WS_HTTP_CATALOG', '/'); define('DIR_WS_HTTPS_CATALOG', '/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', '/var/www/html/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('DB_SERVER', '127.0.0.1'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', '**'); define('DB_SERVER_PASSWORD', '**'); define('DB_DATABASE', 'rocksupplies_net_-_rocksupplies'); define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' ?>
♥Vger Posted March 19, 2006 Posted March 19, 2006 That includes/configure.php file is absolutely correct. So either: 1. You downloaded it and edited it, but when you uploaded it the old file didn't get overwritten (because it's set to Read Only). In this case your site would still be using the old file. 2. There is a .htaccess redirect in place in the root of your web, which is sending people to the shared ssl address. 3. Check in your includes/local/ folders to see if there are any alternative configure.php files in them. If you find any then rename or delete them - because if they exist they have precedence over the full configure.php files (includes/local/configure.php and admin/includes/local/configure.php files are for development work only) Vger
Guest Posted March 19, 2006 Posted March 19, 2006 That includes/configure.php file is absolutely correct. So either: 1. You downloaded it and edited it, but when you uploaded it the old file didn't get overwritten (because it's set to Read Only). In this case your site would still be using the old file. 2. There is a .htaccess redirect in place in the root of your web, which is sending people to the shared ssl address. 3. Check in your includes/local/ folders to see if there are any alternative configure.php files in them. If you find any then rename or delete them - because if they exist they have precedence over the full configure.php files (includes/local/configure.php and admin/includes/local/configure.php files are for development work only) Vger Hi Vger, The includes/configure file i downloaded direct from the server and pasted on here, and following your previous advice, i believed that was correct. I have checked my local folder, and they have 2 files, .cvsignore and readme in them (both admin and catalog). My htaccess file reads as follows, it looks as if this is where the problem but i don't know what to change. Thanks # $Id: .htaccess,v 1.3 2003/06/12 10:53:20 hpdl Exp $ # # This is used with Apache WebServers # # For this to work, you must include the parameter 'Options' to # the AllowOverride configuration # # Example: # # <Directory "/usr/local/apache/htdocs"> # AllowOverride Options # </Directory> # # 'All' with also work. (This configuration is in the # apache/conf/httpd.conf file) # The following makes adjustments to the SSL protocol for Internet # Explorer browsers <IfModule mod_setenvif.c> <IfDefine SSL> SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 </IfDefine> </IfModule> # Fix certain PHP values # (commented out by default to prevent errors occuring on certain # servers) #<IfModule mod_php4.c> # php_value session.use_trans_sid 0 # php_value register_globals 1 #</IfModule>
Guest Posted March 22, 2006 Posted March 22, 2006 Does anyone know what i have to change in the above httaccess? Thanks
Recommended Posts
Archived
This topic is now archived and is closed to further replies.