Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Secure Admin Login - Logout 1.5_1


Hellfish

Recommended Posts

Hi

Ive done everything acording the secure_admin_instructions.txt but when i try to login

( I got the Secure Admin Loginpage...catalog/admin/LoginAction.php )

it dosent work?

It seems like the name and password doesnt work and I get no messages..just a new loginpage...anyone?

/ Hellfish

Link to comment
Share on other sites

  • 2 weeks later...
Hi

Ive done everything acording the secure_admin_instructions.txt but when i try to login

( I got the Secure Admin Loginpage...catalog/admin/LoginAction.php )

it dosent work?

It seems like the name and password doesnt work and I get no messages..just a new loginpage...anyone?

/ Hellfish

I've given it a try. I get past the log-in page to admin/index.php, but can't get any further :(

 

I've downloaded your troxo link, but then found on trying to run it, I needed something else installed, so decided to abandon it.

 

Hey ho... I'll search for something else.

____________________________________________________________________

____________________________________________________________________

Link to comment
Share on other sites

I've given it a try. I get past the log-in page to admin/index.php, but can't get any further :(

 

I've downloaded your troxo link, but then found on trying to run it, I needed something else installed, so decided to abandon it.

 

Hey ho... I'll search for something else.

 

I am having the same problem, is there any debugging tool out there that might assist in what is happening when we hit anything in the admin/index.php which then returns to the login page

Link to comment
Share on other sites

You need XP Pro for IIS to be installed not Home XP

I only run Xp Pro!

 

I had a word with my webspace provider and they gave me an extra option in my cp to add user names and passwords, so sorted :)

____________________________________________________________________

____________________________________________________________________

Link to comment
Share on other sites

I've given it a try. I get past the log-in page to admin/index.php, but can't get any further :(

 

I'm having the same issue. When SSL is enabled I can login but all the links point to http not https. Below is my admin/includes/configure.php file. If anyone can help it would be much appreciated.

 

<?php

 

// define our webserver variables

// FS = Filesystem (physical)

// WS = Webserver (virtual)

define('HTTP_SERVER', 'http://www.chicokaidesign.com'); // eg,
or -
should not be NULL for productive servers

define('HTTP_CATALOG_SERVER', 'http://www.chicokaidesign.com');

define('HTTPS_CATALOG_SERVER', 'https://secure.chicokaidesign.com');

//define('HTTPS_SERVER', 'https://secure.chicokaidesign.com');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', $DOCUMENT_ROOT); // where your pages are located on the server. if $DOCUMENT_ROOT doesnt suit you, replace with your local path. (eg, /usr/local/apache/htdocs)

define('DIR_WS_ADMIN', '/admin/');

define('DIR_FS_ADMIN', DIR_FS_DOCUMENT_ROOT . DIR_WS_ADMIN);

define('DIR_WS_CATALOG', '/catalog/');

define('DIR_FS_CATALOG', DIR_FS_DOCUMENT_ROOT . DIR_WS_CATALOG);

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_CATALOG_IMAGES', '/catalog/' . 'images/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');

define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');

define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

 

// define our database connection

define('DB_SERVER', '*****************');

define('DB_SERVER_USERNAME', '************');

define('DB_SERVER_PASSWORD', '***********'');

define('DB_DATABASE', '***********');

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql');

?>

 

 

I'm no PHP expert but I think the admin/index.php somehow refers to the respective files in admin/includes/boxes for these links through the following:

 

array('title' => BOX_HEADING_CATALOG,

'image' => 'catalog.gif',

'href' => tep_href_link(FILENAME_CATEGORIES, 'selected_box=catalog'),

'children' => array(array('title' => CATALOG_CONTENTS, 'link' => tep_href_link(FILENAME_CATEGORIES, 'selected_box=catalog')),

array('title' => BOX_CATALOG_MANUFACTURERS, 'link' => tep_href_link(FILENAME_MANUFACTURERS, 'selected_box=catalog')))),

 

 

so if you clicked on categories, then admin/includes/boxes/categories.php is relevant and in that file all of the links are 'NONSSL'.

 

if ($selected_box == 'catalog') {

$contents[] = array('text' => '<a href="' . tep_href_link(FILENAME_CATEGORIES, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_CATEGORIES_PRODUCTS . '</a><br>' .

'<a href="' . tep_href_link(FILENAME_PRODUCTS_ATTRIBUTES, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_CATEGORIES_PRODUCTS_ATTRIBUTES . '</a><br>' .

'<a href="' . tep_href_link(FILENAME_MANUFACTURERS, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_MANUFACTURERS . '</a><br>' .

'<a href="' . tep_href_link(FILENAME_REVIEWS, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_REVIEWS . '</a><br>' .

'<a href="' . tep_href_link(FILENAME_SPECIALS, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_SPECIALS . '</a><br>' .

'<a href="' . tep_href_link(FILENAME_PRODUCTS_EXPECTED, '', 'NONSSL') . '" class="menuBoxContentLink">' . BOX_CATALOG_PRODUCTS_EXPECTED . '</a>');

 

Do I need to change these links in each of the files in the admin/includes/boxes directory or is it something in the admin/includes/configure.php?

Link to comment
Share on other sites

I was having the same problem when I first installed this mod.

 

The probem was that I do not use a secure server (HTTPS), but apparently this mod expects you to.

 

Here was my solution:

 

1) follow installation instructions.

2) In the admin\includes\configure.php file you need to add your web address to the HTTPS catalog definition statement, even if you don't use https.

 

define('HTTPS_CATALOG_SERVER', 'http://yoursite.com/');

 

I hope this helps.

 

Brian

Link to comment
Share on other sites

Hi guys,

 

First of all, I'm no expert on this, esspecially as mine failed to work! :-"

 

However several people have contacted me off forum for advice. I've not been able to help them, remember I'm no expert, but one guy came back with a positive result, so to bring every one up to speed, I'll post some of the messages below, so if anyone can help, they can chip in. I'll post the questions first, followed by the positive feedback.

 

Message Forwarded From UncleSteve

 

Hi Uncle Steve

 

I was reading one of your problem posts which was similar to mine did you happen to fix it and can you help??

 

I can process an order ok and on checkout success I press the continue button.

However the continue button takes me to the front page via http when it should take me there via https. How can I change the hyperlink directioon for the continue button.

 

This is driving me crazy as there is a security warning happening because the user is leaving the secure checkout area.

 

Can you help?

 

My problem was solved by changing the cmod file settings, however in the configure files, there's various urls. As part of the problem solving exercise, I tried various things like removing the www from http://www.domainname and also tried changing the http to https and so on.

 

You'll find the contents of my configure files pasted here which may help - http://www.oscommerce.com/forums/index.php?showtopic=242547

 

good luck

 

Uncle Steve

 

The following is the positive post :)

 

I was able to get this working. I backed everything off for secure admin login/logoff and then I was able to get some meaningful error messages such as fatal error includes module was wrong

This led me to believe that my paths were all wrong in the configure.php (for the admin portion)

I changed all the configure dir_fs defines to include the absolute path that the web hosting company was issuing, after i did this, i was able to get to the entire admin section.

after that I restored the admin login/logoff modules and everything was okay

the defines that I had to have absolute paths were

 

DIR_FS_ADMIN

DIR_FS_CATALOG

DIR_FS_DOCUMENT_ROOT

 

Perhaps the above will help others. Basically I haven't had time to test the above findings, so feed back to help me and others is very welcome.

 

Uncle Steve

____________________________________________________________________

____________________________________________________________________

Link to comment
Share on other sites

Hi

Ive done everything acording the secure_admin_instructions.txt but when i try to login

( I got the Secure Admin Loginpage...catalog/admin/LoginAction.php )

it dosent work?

It seems like the name and password doesnt work and I get no messages..just a new loginpage...anyone?

/ Hellfish

 

 

Another thing to look for : when uploading the files or when you move a site with Secure Admin Login properly installed to the root you may find as I did that somehow the files like "incSession" and "LoginAction" mysteriously become 'insession" and "loginaction"! Just change the "s" and the "l" and the "a" back to caps and it works!

Link to comment
Share on other sites

  • 1 month later...
I was having the same problem when I first installed this mod.

 

The probem was that I do not use a secure server (HTTPS), but apparently this mod expects you to.

 

Here was my solution:

 

1) follow installation instructions.

2) In the admin\includes\configure.php file you need to add your web address to the HTTPS catalog definition statement, even if you don't use https.

 

define('HTTPS_CATALOG_SERVER', 'http://yoursite.com/');

 

I hope this helps.

 

Brian

Since moving my site from my local machine to the web server I was unable to login to the admin using this contrib. It would keep giving me the error 'This page is not redirecting properly'.

 

Your fix solved my problem. I simply had to turn on SSL for the admin and everything worked fine.

 

Cheers

Link to comment
Share on other sites

Hi all,

 

The instructions seem to be missing a sql to set-up a MySQL table within the main database.

 

It would be nice to know what field types length etc to use in order to store the data that presumably the php files address.

 

Regards,

Peter_of_Stirling

Link to comment
Share on other sites

  • 3 months later...

I don't know Why After i did All step,then run

www.xxx.com/catalog/admin/login.php

it Only show

 

"Recursion too deep; the stack overflowed"

 

I track the problem and Found the problem is come from Step 11 Code:

 

"11. Add the following code to the bottom of /catalog/admin/includes/application_top.php just before the final closing "?>"

 

if($_SERVER['SERVER_PORT'] == 80) {

Header("Location: " . HTTPS_CATALOG_SERVER . DIR_WS_ADMIN);

exit;

}"

But i have no idea in PHP, so anyone can help? or is it have alternate for admin login page?

Visual Basic / ASP.NET / C# Programmer

eBay API Developer Program Member

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...