Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL problem


supersprint

Recommended Posts

www.supersprint-exhausts.co.uk/catalog

 

I have a dedicated ssl with my host 1and1 and I have contacted them asking why its not working properly and they told me I need to change something my side. Is it in the includes/configure.php file?

 

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

 

Do I change the

// secure webserver for checkout procedure?

to something else maybe? lol

 

Sorry I'm a newbie :'( .

Link to comment
Share on other sites

www.supersprint-exhausts.co.uk/catalog

 

I have a dedicated ssl with my host 1and1 and I have contacted them asking why its not working properly and they told me I need to change something my side. Is it in the includes/configure.php file?

 

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

 

Do I change the

// secure webserver for checkout procedure?

to something else maybe? lol

 

Sorry I'm a newbie :'( .

 

You need to take a look at your /includes/configure.php and admin/includes/configure.php files.

If you post the includes/configure.php file here that would help.

BE SURE TO REMOVE YOUR DATABASE CONNECTION STRINGS BEFORE POSTING.

 

This may heklp as well :

http://www.oscommerce.info/kb/osCommerce/G...mon_Problems/75

 

It's likley you need the https:// path set properly :

define('HTTP_SERVER', 'http://www.yourdomain.com'); // eg, http://localhost - should not be empty for productive servers
define('HTTPS_SERVER', 'https://yourdomain.com'); // eg, https://localhost - should not be empty for productive servers
define('ENABLE_SSL', true); // secure webserver for checkout procedure?
define('HTTP_COOKIE_DOMAIN', 'www.yourdomain.com');
define('HTTPS_COOKIE_DOMAIN', 'yourdomain.com');
define('HTTP_COOKIE_PATH', '/catalog/');
define('HTTPS_COOKIE_PATH', '/catalog/');
define('DIR_WS_HTTP_CATALOG', '/catalog/');
define('DIR_WS_HTTPS_CATALOG', '/catalog/');

 

and btw - forward slashes :

//

are comments within a php file.

And to comment out a block of code use /* like this :

/*

code

code

code

*/

 

david

Link to comment
Share on other sites

Whats not working properly?

 

Well on my pc here I don't get any message saying im in a secure connection. I don't get a padlock symbol. On my home pc a message pops up saying im about to view unsecure pages and this happens with every page I visit within the https range. If you understand that?

Link to comment
Share on other sites

<?php
/*
 osCommerce, Open Source E-Commerce Solutions
 http://www.oscommerce.com

 Copyright (c) 2003 osCommerce

 Released under the GNU General Public License
*/

// Define the webserver and path parameters
// * DIR_FS_* = Filesystem directories (local/physical)
// * DIR_WS_* = Webserver directories (virtual/URL)
 define('HTTP_SERVER', 'http://www.supersprint-exhausts.co.uk'); // eg, http://localhost - should not be empty for productive servers
 define('HTTPS_SERVER', 'https://www.supersprint-exhausts.co.uk'); // eg, https://localhost - should not be empty for productive servers
 define('ENABLE_SSL', true); // secure webserver for checkout procedure?
 define('HTTP_COOKIE_DOMAIN', 'www.supersprint-exhausts.co.uk');
 define('HTTPS_COOKIE_DOMAIN', 'www.supersprint-exhausts.co.uk');
 define('HTTP_COOKIE_PATH', '/catalog/');
 define('HTTPS_COOKIE_PATH', '/catalog/');
 define('DIR_WS_HTTP_CATALOG', '/catalog/');
 define('DIR_WS_HTTPS_CATALOG', '/catalog/');
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');
 define('DIR_FS_CATALOG', '/kunden/homepages/44/d194939030/htdocs/catalog/');
 define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
 define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

// define our database connection
 define('DB_SERVER', '********'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', '********');
 define('DB_SERVER_PASSWORD', '*******');
 define('DB_DATABASE', '*********');
 define('USE_PCONNECT', 'true'); // use persistent connections?
 define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'
?>

Link to comment
Share on other sites

If no SSL

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

to be

define('ENABLE_SSL', false); // secure webserver for checkout procedure?

 

 

Satish Mantri

Ask/Skype for Free osCommerce value addon/SEO suggestion tips for your site.

 

Check My About US For who am I and what My company does.

Link to comment
Share on other sites

If you look at your page source in one of your secure pages you will find this:

Your server doesn't think that you are secure.

 

I found this on another post. Open your includes/application_top.php:

Replace:

$request_type = (getenv('HTTPS') == 'on') ? 'SSL' : 'NONSSL';

 

 

with this:

 

$request_type = (eregi ($HTTP_HOST, HTTPS_SERVER)) ? 'SSL' : 'NONSSL';

See if that helps.

Other great Open Source (Free) programs: (Free as in free speech not free beer)

The Gimp - An image program. | Firefox - All you have to do is add the Web Developer add-on to make this web browser complete. | FileZilla - An ftp program. | Inkscape - A good program to create images with. | Thunderbird - An email program. | Openoffice.org - An office suite that is compatible with MS Office. | Abiword - Another office suite. | Audacity - A sound recording tool. | ddp's Picks | Wordpress - An easy to use blogging software. | Joomla - An easy to use CMS that has ecommerce plug-ins. | Drupal - Another CMS

How do I find these programs? Google Search!

Link to comment
Share on other sites

Im having the same problems on my site at the moment too:

 

http://www.peasorbeans.co.uk

 

I thought the SSL 'Unauthorised Content' was a caused by links and images in the code but Ive checked and double checked.

 

Like yourself I am using 1and1 dedicated SSL:

 

I also posted this which maybe linked.

 

http://www.oscommerce.com/forums/index.php?showtopic=249598

Link to comment
Share on other sites

Copy and save this text as ssl.php. Upload it to your server. Go to it in your browser secure and non-secure. Then tell me what it said.

<?php

 

if (getenv('HTTPS') == 'on') {

echo 'You are Secure';

} else {

echo 'You are not secure';

}

?>

Other great Open Source (Free) programs: (Free as in free speech not free beer)

The Gimp - An image program. | Firefox - All you have to do is add the Web Developer add-on to make this web browser complete. | FileZilla - An ftp program. | Inkscape - A good program to create images with. | Thunderbird - An email program. | Openoffice.org - An office suite that is compatible with MS Office. | Abiword - Another office suite. | Audacity - A sound recording tool. | ddp's Picks | Wordpress - An easy to use blogging software. | Joomla - An easy to use CMS that has ecommerce plug-ins. | Drupal - Another CMS

How do I find these programs? Google Search!

Link to comment
Share on other sites

Copy and save this as ssl.php and see if it works?

<?php

 

if ($_SERVER['SERVER_PORT'] == '443') {

echo 'You are Secure';

} else {

echo 'You are not secure';

}

?>

Other great Open Source (Free) programs: (Free as in free speech not free beer)

The Gimp - An image program. | Firefox - All you have to do is add the Web Developer add-on to make this web browser complete. | FileZilla - An ftp program. | Inkscape - A good program to create images with. | Thunderbird - An email program. | Openoffice.org - An office suite that is compatible with MS Office. | Abiword - Another office suite. | Audacity - A sound recording tool. | ddp's Picks | Wordpress - An easy to use blogging software. | Joomla - An easy to use CMS that has ecommerce plug-ins. | Drupal - Another CMS

How do I find these programs? Google Search!

Link to comment
Share on other sites

I think so.

 

If you made that change before you should have a line that looks like this in your includes/application_top.php:

$request_type = (eregi ($HTTP_HOST, HTTPS_SERVER)) ? 'SSL' : 'NONSSL';

If you didn't your line will look like this (or you changed it back):

$request_type = (getenv('HTTPS') == 'on') ? 'SSL' : 'NONSSL';

Now change that line to:

$request_type = ($_SERVER['SERVER_PORT'] == '443') ? 'SSL' : 'NONSSL';

See if that fixes your problem?

Other great Open Source (Free) programs: (Free as in free speech not free beer)

The Gimp - An image program. | Firefox - All you have to do is add the Web Developer add-on to make this web browser complete. | FileZilla - An ftp program. | Inkscape - A good program to create images with. | Thunderbird - An email program. | Openoffice.org - An office suite that is compatible with MS Office. | Abiword - Another office suite. | Audacity - A sound recording tool. | ddp's Picks | Wordpress - An easy to use blogging software. | Joomla - An easy to use CMS that has ecommerce plug-ins. | Drupal - Another CMS

How do I find these programs? Google Search!

Link to comment
Share on other sites

Thanks Nate

 

It doesn't appear to have changed for the better.

 

When I log into my test account it still says I am going to be re-directed to a connection that is not secure. The padlock symbol is showing though. Im still being told in my admin area that im not protected by a secure ssl connection.

Link to comment
Share on other sites

Your admin area is a different problem. You storefront seems to be working correctly.

Open your admin/includes/configure.php.

define('HTTP_SERVER', 'https://www.yoursite.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'https://www.yoursite.com');

define('HTTPS_CATALOG_SERVER', 'https://www.yoursite.com');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

The HTTP_SERVER, HTTP_CATALOG_SERVER and HTTPS_CATALOG_SERVER all need to be secure links.

Other great Open Source (Free) programs: (Free as in free speech not free beer)

The Gimp - An image program. | Firefox - All you have to do is add the Web Developer add-on to make this web browser complete. | FileZilla - An ftp program. | Inkscape - A good program to create images with. | Thunderbird - An email program. | Openoffice.org - An office suite that is compatible with MS Office. | Abiword - Another office suite. | Audacity - A sound recording tool. | ddp's Picks | Wordpress - An easy to use blogging software. | Joomla - An easy to use CMS that has ecommerce plug-ins. | Drupal - Another CMS

How do I find these programs? Google Search!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...