Jump to content
  • Checkout
  • Login
  • Get in touch


The e-commerce.

Moving to SSL Question


Recommended Posts

I was running my web site without a secure connection but now that my storefront is ready I contacted iPower and ordered an SSL cert for secure transacations. They informed me that all the files have been moved to another server and I am now waiting for the DNS to update.


Once that is finished what do I do? I'm a little confused by all the SSL topics. Do I need to update any of my oscommerce files?

Link to comment
Share on other sites

  • 2 weeks later...

I've managed to fanangle the code in the config.php file to get my image to show up. Now the site looks the way it sould.


Problems though:


viewing the catalog images works fine, and when selecting 'Buy Now' for an item from the catalog works fine (we see the Lock and the HTTPS in the bar, but when we go to check out (Add to Cart), the following message pops up:


'Security Warning'


'Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection.....'


How do I fix this?

Link to comment
Share on other sites

Here is my 'includes.php' file.




osCommerce, Open Source E-Commerce Solutions



Copyright © 2003 osCommerce


Released under the GNU General Public License



// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://aanddclokeyenterprisesinc.com');

define('HTTPS_SERVER', 'https://aanddclokeyenterprisesinc.com');

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'aanddclokeyenterprisesinc.com');

define('HTTPS_COOKIE_DOMAIN', 'aanddclokeyenterprisesinc.com');

define('HTTP_COOKIE_PATH', '/osCommerce/catalog/');

define('HTTPS_COOKIE_PATH', '/osCommerce/catalog/');

define('DIR_WS_HTTP_CATALOG', '/osCommerce/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/osCommerce/catalog/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');


define('DIR_WS_DOWNLOAD_PUBLIC', 'xxxx/');

define('DIR_FS_CATALOG', 'xxxxxxosCommerce/catalog/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');



// define our database connection

define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', 'xxxxx');

define('DB_SERVER_PASSWORD', 'xxxxx');

define('DB_DATABASE', 'xxxxx');

define('USE_PCONNECT', 'false'); // use persistent connections?

define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'



I hope there is someone out there that can help. You can also visit the site and see the error when you put the product into the cart or if you checkout. http://aanddclokeyenterprisesinc.com/osCom...talog/index.php

Link to comment
Share on other sites

Actually, I just noticed that it only occurs when you first select a category, then click "Buy it Now", then 'Add to Cart'. Happens every time. It doesn't occur if you do it differently just in this specific order. Can't figure it out.

Link to comment
Share on other sites

Bump. Anyone?


Do you have a shared or private SSL?



This error sounds like it's happening because your either in a secured area and it's trying to load non secure content (i.e. an image stored on the non-secure site) OR because your using a shared SSL and moving from one site to the next.


I used a shared SSL at first, and when I went to a https page it gave me a VERY SIMILAR message - i then had to click continue to proceed. Now i've a private SSL, I have no problems what so ever.

Link to comment
Share on other sites

I ordered a dedicated SSL from iPower/GeoTrust.


It's just weird that it's only happening when I purchase a product in that exact sequence. If I order a product using different route, I don't get the message - goes right to the secured page with the shopping cart.

Link to comment
Share on other sites

I also noticed that if I click 'Cart Contents' in the menu at the top right I'm sent to an unsecured page (http) and that's why I get the message. If I click on the other menu items (My Account, Log Off, Checkout) I'm sent to a secured page (https) Is this supposed to happen? If not, how can it be fixed?

Link to comment
Share on other sites

I fixed one of the problems. I had to add 'SSL' to the FILENAME_SHOPPING_CART line in the header.php file. Now the link takes the user to a secure page.


I still can't figure out the issue with the 'Buy it Now' buttons and why it prompts the security warning ' Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.... Cancel or Continue'


The message only occurs when you hit the 'Buy it Now' button first on the category page and then add to cart. Any other combination of adding a product to the cart will not prompt the message. Anyone?

Link to comment
Share on other sites

I resolved my problem. Originally the header.php file did not have SSL in the FILENAME_SHOPPING_CART line so I edited all files that pointed to the 'SSL' version of the shopping cart. No messages now. The secure page appears only when the person is ready to checkout and not at the shopping cart level.


I'm surprised that with all the guru's in this forum, no one figured it out. However, my site is heavily modded. Well, now we know why the message appears and what to look for.

Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

  • Create New...