ShadowMoses Posted May 21, 2007 Posted May 21, 2007 Hi, Sorry to bring this up again, i've read through countless threads without success. On secure pages (login etc) i get a broken padlock (firefox) nonsecure items. Most image links seems to be http but the paths are relative (/images/...). Also, i previously had a shared ssl which worked fine so i guess there must be something else wrong? here's my configure.php: // Define the webserver and path parameters// * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.inoneword.co.uk'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://www.inoneword.co.uk'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.inoneword.co.uk'); define('HTTPS_COOKIE_DOMAIN', 'https://www.inoneword.co.uk'); define('HTTP_COOKIE_PATH', '/'); define('HTTPS_COOKIE_PATH', '/'); define('DIR_WS_HTTP_CATALOG', '/'); define('DIR_WS_HTTPS_CATALOG', '/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); My Site Thanks for any help!
oschellas Posted May 21, 2007 Posted May 21, 2007 Have a look if this fix also applies to your host...
ShadowMoses Posted May 21, 2007 Author Posted May 21, 2007 Yeah, thats one on the threads i've searched through. I've set this: $request_type = (getenv('HTTPS') == '443') ? 'SSL' : 'NONSSL'; ( https://www.inoneword.co.uk/myenv.php )
oschellas Posted May 21, 2007 Posted May 21, 2007 See the followup at this post and change the line in includes/application_top.php: $request_type = (getenv('HTTPS') == 'on') ? 'SSL' : 'NONSSL'; to: $request_type = (getenv('HTTPS') == '1') ? 'SSL' : 'NONSSL';
ShadowMoses Posted May 21, 2007 Author Posted May 21, 2007 Yeah, i've tried that too... but tried it again just now and i still have the same problem.
oschellas Posted May 21, 2007 Posted May 21, 2007 Note to change getenv('HTTPS') == 'on' to getenv('HTTPS') == '1' in all files below: includes/application_top.php includes/functions/general.php admin/index.php (if SSL used)
ShadowMoses Posted May 21, 2007 Author Posted May 21, 2007 Yep, both application_top.php and general.php are set to: $request_type = (getenv('HTTPS') == '1') ? 'SSL' : 'NONSSL'; This is why i'm so perplexed! :)
oschellas Posted May 21, 2007 Posted May 21, 2007 Did you also try this in catalog/includes/application_top.php: $request_type = (getenv('SERVER_PORT') == '443') ? 'SSL' : 'NONSSL'; and this in catalog/includes/functions/general.php: if ( (ENABLE_SSL == true) && (getenv('SERVER_PORT') == '443') ) { Note: use getenv('SERVER_PORT') == '443' and not getenv('HTTPS') == '443' as you did before. Also change following in your config files: define('HTTP_COOKIE_DOMAIN', 'www.inoneword.co.uk'); define('HTTPS_COOKIE_DOMAIN', 'https://www.inoneword.co.uk'); to: define('HTTP_COOKIE_DOMAIN', 'inoneword.co.uk'); define('HTTPS_COOKIE_DOMAIN', 'inoneword.co.uk'); or to: define('HTTP_COOKIE_DOMAIN', ''); define('HTTPS_COOKIE_DOMAIN', '');
ShadowMoses Posted May 21, 2007 Author Posted May 21, 2007 Well it seemed the SEO-G mod was causing some problems as it had generated some secure links with the old shared ssl links. Note: use getenv('SERVER_PORT') == '443' and not getenv('HTTPS') == '443' as you did before. Ah thanks! i knew i would have made a silly mistake somewhere ! :) Now everything is secure through the checkout. The only slight problem is the login/off pages but perhaps thats not a big deal?
oschellas Posted May 21, 2007 Posted May 21, 2007 The padlock works like it should at: https://www.inoneword.co.uk/ and other pages like: https://www.inoneword.co.uk/login.php Seems you use some sort of URL rewrite module which point to login.html instead of to login.php. Check the documentation for this module regarding correct setup with SSL.
ShadowMoses Posted May 21, 2007 Author Posted May 21, 2007 Brilliant! it all works now. I'd forgotten to delete the old SEO links for login/off! Thanks for all your help!
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.