msaunders Posted October 23, 2002 Posted October 23, 2002 Hi When I enter my cutomer Login, I am getting a security alert warning message. "You Are about to be redirected to a connection that is not secure. The information you are sending to the current site might be transmitted to a nonsecure site. Do you wish to continue?" Why am I getting this ? My login etc/customer info is stored in an SSL area, my when I hit login, it is going to a HTTPS location. Can someone enlighten me ? Thanks Martin
Ajeh Posted October 23, 2002 Posted October 23, 2002 This is due to the images on the site and that you are switching from secure to non-secure. To correct this, edit in /catalog/login.php // BOF: WebMakers.com Added: Removed Security Alert Message // add 'SSL' to both links if (sizeof($navigation->snapshot) > 0) { $origin_href = tep_href_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), 'SSL'); $navigation->clear_snapshot(); tep_redirect($origin_href); } else { tep_redirect(tep_href_link(FILENAME_DEFAULT,'','SSL')); } // EOF: WebMakers.com Added: Removed Security Alert Message Then edit in /catalog/includes/application_top.php in the case 'notify': // BOF: WebMakers.com Added: Fix redirect on security alert tep_redirect(tep_href_link(basename($PHP_SELF), tep_get_all_get_params(array('action')), 'SSL')); // EOF: WebMakers.com Added: Fix redirect on security alert This should correct the Security Alert in most browsers.
FloydFanatic Posted October 28, 2002 Posted October 28, 2002 This solution did not work for me, using a snapshot from 20021023, any ideas?
msaunders Posted October 28, 2002 Author Posted October 28, 2002 Hmmmm.. did u follow the intructions exactly ? Down to the last detail?
FloydFanatic Posted October 28, 2002 Posted October 28, 2002 . Yes, precisely, and I just did it again to be sure, but no luck... *sigh* When is your snapshot from? I be interested in seeing your login.php file, and the HTML source generated by it... .
i4media Posted November 4, 2002 Posted November 4, 2002 I have customised the layout for oscommerce cvs 20021014 and installed it onto our web server. I continuousley get the message "you are now being transfered to a page that contains secure and non-secure items" ""YES" "NO" "MORE INFO"" and if i click yes the gold lock dissapears off the bottom of the internet explorer window. I have tried the above solution to the letter but to no avail. i have also tried another couple of solutions on these pages but none seam to work. If there is a solution that does work fully, could you please let us know as i am sure many people have come across this themselves.
RichTek Posted November 4, 2002 Posted November 4, 2002 Looks like the fix worked on my site. Rich EBS Rich EBS
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Hi Can you post the URL of your shop so I can take a look ? martin
i4media Posted November 4, 2002 Posted November 4, 2002 The URL for the site with the problem is www.linzishoes.com/default.php
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Hi I know you have said that you followed the instructions but , can you recheck what you edited ? Particularily the /catalog/includes/application_top.php in the case 'notify' . I found this hard to find when I was editing it (the exact line) . Its possible you have edited the wrong line. Its seems strange that it works for some users and not for others. martin
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Hi again. Take a look at line 340 in your application_top.psp It should read:: tep_redirect(tep_href_link(basename($PHP_SELF), tep_get_all_get_params(array('action')), 'SSL'));
i4media Posted November 4, 2002 Posted November 4, 2002 i have copied the text to the letter and still have the same problem's. the application_top.php file is at the following url. https://www.linzishoes.com/includes/app.txt any more idea's let me know
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Hi I think I know what you have done. Take a look at this and modify yours to suit http://www.debasics.com/trythis.txt rgds martin
i4media Posted November 4, 2002 Posted November 4, 2002 i altered my application top to what you had on your page but i now recieve this message Fatal error: Failed opening required 'includes/classes/breadcrumb.php' (include_path='.:') in /usr/local/psa/home/vhosts/linzishoes.com/httpsdocs/includes/application_top.php on line 420 can you enlighten me if thats possible?
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Hmmm... possibly because of the different snapshots . You didnt cut and paste my complete file into yours did you ?
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Take a look at your application_top again. Remove the lines you added as suggested by Ajeh at the start of this post. I think this is what you have done wrong here (i think) Add this instead case 'notify' : if (tep_session_is_registered('customer_id')) { if ($HTTP_GET_VARS['products_id']) { $notify = array($HTTP_GET_VARS['products_id']); } elseif ($HTTP_POST_VARS['notify']) { $notify = $HTTP_POST_VARS['notify']; } else { tep_redirect(tep_href_link(basename($PHP_SELF), tep_get_all_get_params(array('action')), 'SSL')); }
i4media Posted November 4, 2002 Posted November 4, 2002 that problem fixed. but im still getting the error message about displaying secure and non-secure items on the page
msaunders Posted November 4, 2002 Author Posted November 4, 2002 Ok, now, lets take a look at your login.php change what you have to this:: if (sizeof($navigation->snapshot) > 0) { $origin_href = tep_href_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), 'SSL'); $navigation->clear_snapshot(); tep_redirect($origin_href); } else { tep_redirect(tep_href_link(FILENAME_DEFAULT,'','SSL')); and let me know
i4media Posted November 4, 2002 Posted November 4, 2002 the page contains secure and non-secure items is still coming up. anymore idea's?
msaunders Posted November 4, 2002 Author Posted November 4, 2002 crud!! Not really . Are you cutting and pasting exactly what Ajeh posted or what I had posted ?
i4media Posted November 4, 2002 Posted November 4, 2002 yes exactley. thats why i said word for word :) but it still dont work :(
msaunders Posted November 4, 2002 Author Posted November 4, 2002 No, You didnt read my question :) Are you using what I had posted or what Ajeh had posted ???.. Do you wnat me to send you my login.php and my application_top.php files.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.