Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Returning customer sign in - security alert


ktaylor

Recommended Posts

I am running oscommerce on my webhost's shared secure server. They recently moved us to a new server and after editing the config file I am noticing that when a returning customer signs in they receive a pop-up security alert, "You are about to be redirected to a connection that is not secure... do you want to continue".

 

I've also noticed that different stages of the checkout process are going back and forth between secure & unsecure, i.e.,

 

1. store index page secure server

2. clicking on product redirects to unsecure server

3. add to cart on insecure server

4. check out redirects back to secure server

5. returning customer sign-in sets of security alert box

6. if i choose to continue, i am redirected back to unsecure delivery info page

7. choosing delivery method and clicking continue takes me back to secure page for payment info

 

The rest of the process is fine and operating on the secure server.

 

Have I missed something in my config file or is this a problem with webhost?

 

define('HTTP_SERVER', 'http://www.ourdomain.com');

define('HTTPS_SERVER', 'https://ssl.mywebhost.com');

define('ENABLE_SSL', true);

define('HTTP_COOKIE_DOMAIN', 'www.ourdomain.com');

define('HTTPS_COOKIE_DOMAIN', 'ssl.mywebhost.com');

define('HTTP_COOKIE_PATH', '/store/');

define('HTTPS_COOKIE_PATH', '/ourdomain.com/store/');

define('DIR_WS_HTTP_CATALOG', '/store/');

define('DIR_WS_HTTPS_CATALOG', '/ourdomain.com/store/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/home/username/ourdomain-www/store/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

// define our database connection

define('DB_SERVER', 'www.ourdomain.com');

define('DB_SERVER_USERNAME', 'username');

define('DB_SERVER_PASSWORD', 'password');

define('DB_DATABASE', 'ourdomain_com');

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql');

 

I thank you very much for your help and second set of eyes!

Kim

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...