Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Cannot get Session ID to dissappear from URL when in SSL part of site?


stubbsy

Recommended Posts

Hi there,

 

I have recently had an SSL certificate installed on my server and since then when a user creates an account or logs in the session ID stays in the URL. This then means that they cannot buy anything as I use epdq to process transactions and they require me to specifiy the URL which will call ePDQ to take the transaction. With customers having the session ID in their URL when that call is made they are told that they are trying to connect from an invalid URL.

 

Does anyone have any ideas what the cause might be?

 

Here is my confirgure settings..

 

  define('HTTP_SERVER', 'http://www.dirtbikebitz.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'https://www.dirtbikebitz.com'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', true); // secure webserver for checkout procedure?
 define('HTTP_COOKIE_DOMAIN', 'www.dirtbikebitz.com');
 define('HTTP_MAIL_DOMAIN', 'dirtbikebitz.com');
 define('HTTPS_COOKIE_DOMAIN', '/');
 define('HTTP_COOKIE_PATH', '/');
 define('HTTPS_COOKIE_PATH', '/');
 define('DIR_WS_HTTP_CATALOG', '/');
 define('DIR_WS_HTTPS_CATALOG', '/');
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

My session settigs in configure are

 

Session Directory /tmp   
Force Cookie Use False   
Check SSL Session ID False   
Check User Agent False   
Check IP Address False   
Prevent Spider Sessions True   
Recreate Session False

 

Thanks

 

Dave

Link to comment
Share on other sites

I appear to have fixed it by changing the following

 

  define('HTTP_COOKIE_DOMAIN', '.dirtbikebitz.com');
 define('HTTPS_COOKIE_DOMAIN', '.dirtbikebitz.com');

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...