Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL questions


vjwebb

Recommended Posts

Currently I have my oscommerce catalog installed in the https directory as shops and I have the HTTP_SERVER and the HTTPS_SERVER both pointed to https://www.vjwebbgifts.com.

 

Everything works perfectly. The shop has been up for over a year and a half with no problems.

 

However, I have been toying with the idea of running only the secure pages under https and I have a couple of questions.

 

Do I keep a complete copy of the catalog in both http and https ? Then change the config file so that HTTP_SERVER point to http://www.vjwebbgifts.com ?

 

Then whenever I want to tweak the code, I have to install the changes into the shops directory in both http and https ?

 

I have searched the knowledge base and the forum and can't find anywhere where this is discussed.

 

Thank you,

-- A ship in a harbor is safe, but that is not a ships ultimate purpose.

Link to comment
Share on other sites

As I understand it, your files actually reside in only one directory, and it is the way they are linked (using http: or https: in the URL) that causes the server to protect them with SSL, or not. Thus you will only ever be storing files in one directory.

 

~Wendy

Link to comment
Share on other sites

As I understand it, your files actually reside in only one directory, and it is the way they are linked (using http: or https: in the URL) that causes the server to protect them with SSL, or not. Thus you will only ever be storing files in one directory.

 

~Wendy

 

 

Thank you. About an hour after I posted I remembered that UNIX has a linking facility and wondered how that is done. If I decide to do that, I think my host can do it for me (they installed the oscommerce.

-- A ship in a harbor is safe, but that is not a ships ultimate purpose.

Link to comment
Share on other sites

Some server setups actually do requires two folders, one for HTTP and another for HTTPS.

 

Obviously it's not a very good way to run a web site (or server for that matter).

:blush:

 

If you are forced to stay with this, or just don't want to change servers, I'd put as much as I could into the HTTP side.

 

Many search engines (like Google) don't index HTTPS (SSL) pages.

 

I checked your site on Google, and only one entry from your site exists.

 

That being said, there are many references to your site as links on other sites showing up on Google.

If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you.

 

"Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice."

- Me -

 

"Headers already sent" - The definitive help

 

"Cannot redeclare ..." - How to find/fix it

 

SSL Implementation Help

 

Like this post? "Like" it again over there >

Link to comment
Share on other sites

I hope you don't mind, but I have a quick question about SSL but I'm not running osCommerce.

 

I'm curious if I set up a SSL certificate for my website and use the https for the pages I want secured, do I need to change the

<form action="http">

tag to

<form action="https">

or does the https in my address bar (ie the certificate) secure every for me?

 

Thank you so much.

Link to comment
Share on other sites

For the form data to be secure, the URL it is sent over must be secure (HTTPS).

If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you.

 

"Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice."

- Me -

 

"Headers already sent" - The definitive help

 

"Cannot redeclare ..." - How to find/fix it

 

SSL Implementation Help

 

Like this post? "Like" it again over there >

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...