majinfaisal Posted August 3, 2006 Share Posted August 3, 2006 At the moment when i type localhost/admin i get straight into the admin section, no logging in = unsecure when i make my site live. Whats the easiest way to do this? I would also like to secure all my checkout pages (assuming the process in securing a page is the same for all), how do i do this exactly? Where abouts on each file is there an option for ssl on the page? (dont want to buy a ssl certificate....) My configure.php :- // Define the webserver and path parameters// * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://localhost'); define('HTTPS_SERVER', ''); define('ENABLE_SSL', true); define('HTTP_COOKIE_DOMAIN', 'localhost'); define('HTTPS_COOKIE_DOMAIN', ''); define('HTTP_COOKIE_PATH', '/'); define('HTTPS_COOKIE_PATH', ''); define('DIR_WS_HTTP_CATALOG', '/'); define('DIR_WS_HTTPS_CATALOG', ''); define('DIR_WS_IMAGES', '/images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', 'c:/easyphp1-8/www/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); Do i simply add https://localhost, for the https server and cookie domain? what about the https catalog etc. Btw i removed my catalog folder, but that shouldnt make a difference if everything is referenced correctly. Link to comment Share on other sites More sharing options...
majinfaisal Posted August 3, 2006 Author Share Posted August 3, 2006 I've found an excellent thread in the tips and tricks section for help with ssl on oscommerce: - http://www.oscommerce.com/forums/index.php?sho...=151162&hl= Any help with the admin bits are greatly appreciated. Link to comment Share on other sites More sharing options...
majinfaisal Posted August 3, 2006 Author Share Posted August 3, 2006 still figuring out how to get a login for admin section.... Link to comment Share on other sites More sharing options...
Jack_mcs Posted August 3, 2006 Share Posted August 3, 2006 You would do that using an .htaccess/.htpasswd setup. Do a search for htpasswd and you should find plenty of threads explaining how. Jack Support Links: For Hire: Contact me for anything you need help with for your shop: upgrading, hosting, repairs, code written, etc. All of My Addons Get the latest versions of my addons Recommended SEO Addons Link to comment Share on other sites More sharing options...
majinfaisal Posted August 4, 2006 Author Share Posted August 4, 2006 Thanks alot :) cant having everyone accessing the admin section could we lol Link to comment Share on other sites More sharing options...
starcad Posted August 4, 2006 Share Posted August 4, 2006 Thanks alot :) cant having everyone accessing the admin section could we lol I like this contribution simple to install and easy to use http://www.oscommerce.com/community/contri...in+login+logoff Link to comment Share on other sites More sharing options...
majinfaisal Posted August 4, 2006 Author Share Posted August 4, 2006 Thanks for the link am really want to implement this, but am having installation problems... when i add // Define the admin login module require('incSession.php'); to my admin/includes/application_top.php file, my whole admin section refuses to work, any ideas why? Whats the EASIEST most simplest and effective way to get HTTPS working on pages on my site? Link to comment Share on other sites More sharing options...
majinfaisal Posted August 5, 2006 Author Share Posted August 5, 2006 by admin section refusing to work i mean, the browser doesnt want move to the next page, sorta like its trying to connect but it wont. Link to comment Share on other sites More sharing options...
majinfaisal Posted August 5, 2006 Author Share Posted August 5, 2006 I have managed to get the user/password from .htpasswd working so ive decided to use that, still confused with what went wrong with the contribution... Link to comment Share on other sites More sharing options...
miranto Posted August 7, 2006 Share Posted August 7, 2006 I have managed to get the user/password from .htpasswd working so ive decided to use that, still confused with what went wrong with the contribution... Hi I have a really dumb question,,, i edited the file secure_administrator.sql but where do i upload that file or how do i install it??,,, i go into the login page and once i type the username and password it just reloads i think it's because i haven't uploaded that .sql file can someone help please. Link to comment Share on other sites More sharing options...
majinfaisal Posted August 7, 2006 Author Share Posted August 7, 2006 I used PHPMYADMIN to run the sql query (basically upload the secure_administrator.sql file). I had problems with the contribution, i reckon i made a mess somewhere lol. Link to comment Share on other sites More sharing options...
miranto Posted August 7, 2006 Share Posted August 7, 2006 I used PHPMYADMIN to run the sql query (basically upload the secure_administrator.sql file). I had problems with the contribution, i reckon i made a mess somewhere lol. hehe everything worked well for me except the user pass thing, but i formgot to tell,, i am on a windows server and i have no phpmyadmin :( so i think this will not work for me,, any way i'm changing my hosting provider :) Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.