Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

homepage is SSl protected but don't want it to be.


Guest

Recommended Posts

Posted

Hi,

 

When someone tries to access my homepage for my store, the browser at first tries to go to the HTTP:// address, then after a couple of seconds it redirects to the HTTPS://, so my home page is SSL protected. I dont want this as i feel the SSL protection is putting alot of people of.

 

I have been told that i can edit the script in the header.php file to stop this redirect, but i can't work out what to do. Is there anyone who can help?

 

My header.php file looks like this:

 

<?php

/*

$Id: header.php,v 1.42 2003/06/10 18:20:38 hpdl Exp $

 

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// check if the 'install' directory exists, and warn of its existence

if (WARN_INSTALL_EXISTENCE == 'true') {

if (file_exists(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/install')) {

$messageStack->add('header', WARNING_INSTALL_DIRECTORY_EXISTS, 'warning');

}

}

 

// check if the configure.php file is writeable

if (WARN_CONFIG_WRITEABLE == 'true') {

if ( (file_exists(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/includes/configure.php')) && (is_writeable(dirname($HTTP_SERVER_VARS['SCRIPT_FILENAME']) . '/includes/configure.php')) ) {

$messageStack->add('header', WARNING_CONFIG_FILE_WRITEABLE, 'warning');

}

}

 

// check if the session folder is writeable

if (WARN_SESSION_DIRECTORY_NOT_WRITEABLE == 'true') {

if (STORE_SESSIONS == '') {

if (!is_dir(tep_session_save_path())) {

$messageStack->add('header', WARNING_SESSION_DIRECTORY_NON_EXISTENT, 'warning');

} elseif (!is_writeable(tep_session_save_path())) {

$messageStack->add('header', WARNING_SESSION_DIRECTORY_NOT_WRITEABLE, 'warning');

}

}

}

 

// check session.auto_start is disabled

if ( (function_exists('ini_get')) && (WARN_SESSION_AUTO_START == 'true') ) {

if (ini_get('session.auto_start') == '1') {

$messageStack->add('header', WARNING_SESSION_AUTO_START, 'warning');

}

}

 

if ( (WARN_DOWNLOAD_DIRECTORY_NOT_READABLE == 'true') && (DOWNLOAD_ENABLED == 'true') ) {

if (!is_dir(DIR_FS_DOWNLOAD)) {

$messageStack->add('header', WARNING_DOWNLOAD_DIRECTORY_NON_EXISTENT, 'warning');

}

}

 

if ($messageStack->size('header') > 0) {

echo $messageStack->output('header');

}

?>

<script language="JavaScript" type="text/JavaScript">

<!--

function MM_preloadImages() { //v3.0

var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();

var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)

if (a.indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a;}}

}

 

//-->

</script>

 

<table border="0" width="747" cellspacing="0" cellpadding="0" align="center">

<tr>

<td valign="top" background="" class=""><span class="topheaderNavigation">

<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0" width="747" height="271">

<param name="movie" value="31impression_1.swf">

<param name="quality" value="high">

<embed src="31impression_1.swf" quality="high" pluginspage="http://www.macromedia.com/go/getflashplayer" type="application/x-shockwave-flash" width="737" height="271"></embed>

</object>

</span></td>

</tr>

 

 

 

 

</table>

<?php

if (isset($HTTP_GET_VARS['error_message']) && tep_not_null($HTTP_GET_VARS['error_message'])) {

?>

<table border="0" width="747" cellspacing="0" cellpadding="0" align="center">

<tr class="headerError">

<td class="headerError"><?php echo htmlspecialchars(urldecode($HTTP_GET_VARS['error_message'])); ?></td>

</tr>

</table>

<?php

}

 

if (isset($HTTP_GET_VARS['info_message']) && tep_not_null($HTTP_GET_VARS['info_message'])) {

?>

<table border="0" width="747" cellspacing="0" cellpadding="0" align="center">

<tr class="headerInfo">

<td class="headerInfo"><?php echo htmlspecialchars($HTTP_GET_VARS['info_message']); ?></td>

</tr>

</table>

<?php

}

?>

 

Where can i put the code to stop the re-direct to HTTPS? And what code would i need?

 

Thanks for any help.

Posted

post your includes/configure.php file here - minus the database login information

Installed Contributions: CCGV, Close Popup, Dynamic Meta Tags, Easy Populate, Froogle Data Feeder, Google Position, Infobox Header Entire Row, Live Support for OSC, PayPal Seal with CC images, Report_m Sales, Shop by Price Revised, SQL Updater, Who's Online Enhancement, Footer, GNA EP Assistant and still going.

Posted

Heres my includes/configure file:

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

 

 

Copyright © 2003 osCommerce

 

 

Released under the GNU General Public License

 

*/

 

 

 

// Define the webserver and path parameters

 

// * DIR_FS_* = Filesystem directories (local/physical)

 

// * DIR_WS_* = Webserver directories (virtual/URL)

 

define('HTTP_SERVER', 'http://www.rocksupplies.net'); // eg, http://localhost - should not be empty for productive servers

 

define('HTTPS_SERVER', 'https://spartan.xssl.net/rocksupplies.net'); // eg, https://spartan.xssl.net/rocksupplies - should not be empty for productive servers

 

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

 

define('HTTP_COOKIE_DOMAIN', 'www.rocksupplies.net');

 

define('HTTPS_COOKIE_DOMAIN', '');

 

define('HTTP_COOKIE_PATH', '/');

 

define('HTTPS_COOKIE_PATH', '');

 

define('DIR_WS_HTTP_CATALOG', '/');

 

define('DIR_WS_HTTPS_CATALOG', '/');

 

define('DIR_WS_IMAGES', 'images/');

 

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

 

define('DIR_WS_INCLUDES', 'includes/');

 

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

 

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

 

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

 

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

 

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

 

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

 

define('DIR_FS_CATALOG', '/var/www/html/');

 

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

 

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

 

 

// define our database connection

 

define('DB_SERVER', '127.0.0.1'); // eg, localhost - should not be empty for productive servers

 

define('DB_SERVER_USERNAME', '**');

 

define('DB_SERVER_PASSWORD', '**');

 

define('DB_DATABASE', 'rocksupplies_net_-_rocksupplies');

 

define('USE_PCONNECT', 'false'); // use persistent connections?

 

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

 

?>

Posted

That includes/configure.php file is absolutely correct. So either:

 

1. You downloaded it and edited it, but when you uploaded it the old file didn't get overwritten (because it's set to Read Only). In this case your site would still be using the old file.

 

2. There is a .htaccess redirect in place in the root of your web, which is sending people to the shared ssl address.

 

3. Check in your includes/local/ folders to see if there are any alternative configure.php files in them. If you find any then rename or delete them - because if they exist they have precedence over the full configure.php files (includes/local/configure.php and admin/includes/local/configure.php files are for development work only)

 

Vger

Posted
That includes/configure.php file is absolutely correct. So either:

 

1. You downloaded it and edited it, but when you uploaded it the old file didn't get overwritten (because it's set to Read Only). In this case your site would still be using the old file.

 

2. There is a .htaccess redirect in place in the root of your web, which is sending people to the shared ssl address.

 

3. Check in your includes/local/ folders to see if there are any alternative configure.php files in them. If you find any then rename or delete them - because if they exist they have precedence over the full configure.php files (includes/local/configure.php and admin/includes/local/configure.php files are for development work only)

 

Vger

 

Hi Vger,

 

The includes/configure file i downloaded direct from the server and pasted on here, and following your previous advice, i believed that was correct.

 

I have checked my local folder, and they have 2 files, .cvsignore and readme in them (both admin and catalog).

 

My htaccess file reads as follows, it looks as if this is where the problem but i don't know what to change.

 

Thanks

 

 

# $Id: .htaccess,v 1.3 2003/06/12 10:53:20 hpdl Exp $

 

#

 

# This is used with Apache WebServers

 

#

 

# For this to work, you must include the parameter 'Options' to

#

the AllowOverride configuration

 

#

 

# Example:

 

#

 

# <Directory "/usr/local/apache/htdocs">

 

# AllowOverride Options

 

# </Directory>

 

#

 

# 'All' with also work. (This configuration is in the

 

# apache/conf/httpd.conf file)

 

 

 

# The following makes adjustments to the SSL protocol for Internet

 

# Explorer browsers

 

 

 

<IfModule mod_setenvif.c>

 

<IfDefine SSL>

 

SetEnvIf User-Agent ".*MSIE.*" \

 

nokeepalive ssl-unclean-shutdown \

 

downgrade-1.0 force-response-1.0

 

</IfDefine>

 

</IfModule>

 

 

 

# Fix certain PHP values

 

# (commented out by default to prevent errors occuring on certain

 

# servers)

 

 

 

#<IfModule mod_php4.c>

 

# php_value session.use_trans_sid 0

 

# php_value register_globals 1

 

#</IfModule>

Posted

Does anyone know what i have to change in the above httaccess?

 

Thanks

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...