Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL kicking my butt


Guest

Recommended Posts

I bought a dedicated SSL cert from my ISP (1and1.com) and according to them it is installed correctly and working fine. I've changed the config.php file(s) and when I go to the account or checkout page, I do get the https:// prefix in the URL. However, no lock on the bottom of the page, and if I do a test login my browser advises me that I am about to send info over an unsecure connection!

 

My website is www.cubicdissection.com - click on the "puzles for sale" button.

 

HELP PLEASE! This is drivin' me nuts....

Link to comment
Share on other sites

I bought a dedicated SSL cert from my ISP (1and1.com) and according to them it is installed correctly and working fine. I've changed the config.php file(s) and when I go to the account or checkout page, I do get the https:// prefix in the URL. However, no lock on the bottom of the page, and if I do a test login my browser advises me that I am about to send info over an unsecure connection!

 

My website is www.cubicdissection.com - click on the "puzles for sale" button.

 

HELP PLEASE! This is drivin' me nuts....

When it asks if you want to view insecure, say no. You will then see what is referenced from outside your domain.

Link to comment
Share on other sites

When it asks if you want to view insecure, say no. You will then see what is referenced from outside your domain.

 

Thanks for the reply. I think the SSL is actually working; when I click on the file properties it shows a secure page. However, for some reason my browser is not showing the lock on the bottom. It does when I go to other secure sites (like my bank for instance).

Link to comment
Share on other sites

Thanks for the reply. I think the SSL is actually working; when I click on the file properties it shows a secure page. However, for some reason my browser is not showing the lock on the bottom. It does when I go to other secure sites (like my bank for instance).

Well, if you did what was suggested, you would see what was not displayed and has to be fixed. Once this is done, the lock will appear.

Link to comment
Share on other sites

The 'base href' of your site is showing as http:// on both http and htps pages. I do not know what is causing this problem - but it is the source of your difficulties.

 

Vger

 

 

Odd. I changed the configure.php to:

 

define('HTTP_SERVER', 'https://www.cubicdissection.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://www.cubicdissection.com'); // eg, https://localhost - should not be empty for productive servers

 

And that fixed it. Very strange because I'm pretty sure the HTTP_SERVER should not have the s behind it. You would think that changing them both makes every page query to the https url, but it's working correctly in that only the checkout, account etc pages are coming up https. The catalog pages still come up http. Oh well, if it works it works.

Link to comment
Share on other sites

That is a 'work-around' to the problem but not the solution. Google doesn't give page rankings to https pages, so that is not a long-term solution.

 

It looks like a problem with the server configuration --> contact your hosts.

 

Vger

Link to comment
Share on other sites

Oops sorry - didn't notice the piece of text about using 1and1 as your host.

 

This is the fix:

 

find this line in your catalog/includes/application_top.php (around line 40)

 

$request_type = (getenv('HTTPS') == 'on') ? 'SSL' : 'NONSSL';

 

and change it to:

 

$request_type = (getenv('HTTPS') == '1') ? 'SSL' : 'NONSSL'

 

Vger

Link to comment
Share on other sites

If they are with a Reseller they may be on 1and1 without knowing it.

 

If they are hosted with someone else, like GoDaddy, they have similar problems.

 

Vger

What about for those not on 1and1 but still having this issue?
Link to comment
Share on other sites

Hello,

 

I'm having the same problem he was having - but I tried changing both of those lines in the configure.php to HTTPS and I tried replacing the line in application_top as you suggested; but neither of these worked. When you checkout, it still goes to HTTPS but doesn't show the lock or the certificate.

 

The url is http://www.centurapaint.com .

 

Thanks!

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...