Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

How to make a page secure? and how do i add a user/password to admin section...??


majinfaisal

Recommended Posts

At the moment when i type localhost/admin i get straight into the admin section, no logging in = unsecure when i make my site live. Whats the easiest way to do this?

 

I would also like to secure all my checkout pages (assuming the process in securing a page is the same for all), how do i do this exactly? Where abouts on each file is there an option for ssl on the page? (dont want to buy a ssl certificate....)

 

My configure.php :-

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://localhost');

define('HTTPS_SERVER', '');

define('ENABLE_SSL', true);

define('HTTP_COOKIE_DOMAIN', 'localhost');

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', '/images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', 'c:/easyphp1-8/www/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

Do i simply add https://localhost, for the https server and cookie domain? what about the https catalog etc. Btw i removed my catalog folder, but that shouldnt make a difference if everything is referenced correctly.

Link to comment
Share on other sites

You would do that using an .htaccess/.htpasswd setup. Do a search for htpasswd and you should find plenty of threads explaining how.

 

Jack

Support Links:

For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc.

All of My Addons

Get the latest versions of my addons

Recommended SEO Addons

Link to comment
Share on other sites

Thanks for the link am really want to implement this, but am having installation problems... when i add

// Define the admin login module

require('incSession.php');

 

to my admin/includes/application_top.php file, my whole admin section refuses to work, any ideas why?

 

Whats the EASIEST most simplest and effective way to get HTTPS working on pages on my site?

Link to comment
Share on other sites

I have managed to get the user/password from .htpasswd working so ive decided to use that, still confused with what went wrong with the contribution...

 

Hi I have a really dumb question,,,

i edited the file secure_administrator.sql but where do i upload that file or how do i install it??,,, i go into the login page and once i type the username and password it just reloads i think it's because i haven't uploaded that .sql file can someone help please.

Link to comment
Share on other sites

I used PHPMYADMIN to run the sql query (basically upload the secure_administrator.sql file).

 

I had problems with the contribution, i reckon i made a mess somewhere lol.

hehe everything worked well for me except the user pass thing, but i formgot to tell,, i am on a windows server and i have no phpmyadmin :( so i think this will not work for me,, any way i'm changing my hosting provider :)

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...