kori80 Posted May 20, 2011 Share Posted May 20, 2011 Hello everyone, After spending literally 12 hours on trying to install SSL, Im finally getting to an end..except a slight problem, https is not showing on the browser at all :))) I got the cert and installed it and made sure the www.mysite.com is typed in correctly vs. mysite.com. When I go to the site I get no errors at all, its just the https or the lock on the bottom doesnt show. I altered both configure.php files and uploaded them correctly. I have couple related questions and If I can get any answer from you guys, we might find out my problem. First question is..since the site is not live yet, its located under /catalog folder. and i registered the SSL as www.mysite.com not www.mysite.com/catalog...Can that be the problem? Second..this might make some of you guys laugh..I have http and https folders in the server and all the files are in http folder. Should I be copying or moving any files to https folder to make the SSL work? If so which folders needs to be moved? Thnx in advance for your help. Link to comment Share on other sites More sharing options...
KDM Posted May 20, 2011 Share Posted May 20, 2011 define('ENABLE_SSL', true); Does the define 'ENABLE_SSL' in catalog/includes/configure.php look like the one above? This would make difference. The SSL certificate does nothing for enabling SSL. It's role to inform customers that you are who you are. It will verify your identity only when the address you used as your identity is in the address bar. You applied for your certificate as http(s)://www.mysite.com so: As long as that address is sent back to the certificate company when someone clicks on the certificate your site will be verified. If the address bar has http(s)://mysite.com in it: As long as that address is sent back to the certificate company when someone clicks on the certificate your site will not be verified. As far as the rest of the path goes that doesn't make any difference. Check the above: If you have not changed your .htaccess file to compensate for when someone comes to your site with http(s)://mysite.com. Type into the address bar your website without the www, then click on the certificate. Now unless your certificate company handles it different than mine it will not verify your address. The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under. There is no reason I can think for doing your folders the way you do the http(s) in the address has nothing to do with where your folders. And yes I have to smile at that. Kerry Link to comment Share on other sites More sharing options...
kori80 Posted May 20, 2011 Author Share Posted May 20, 2011 define('ENABLE_SSL', true); Does the define 'ENABLE_SSL' in catalog/includes/configure.php look like the one above? This would make difference. The SSL certificate does nothing for enabling SSL. It's role to inform customers that you are who you are. It will verify your identity only when the address you used as your identity is in the address bar. You applied for your certificate as http(s)://www.mysite.com so: As long as that address is sent back to the certificate company when someone clicks on the certificate your site will be verified. If the address bar has http(s)://mysite.com in it: As long as that address is sent back to the certificate company when someone clicks on the certificate your site will not be verified. As far as the rest of the path goes that doesn't make any difference. Check the above: If you have not changed your .htaccess file to compensate for when someone comes to your site with http(s)://mysite.com. Type into the address bar your website without the www, then click on the certificate. Now unless your certificate company handles it different than mine it will not verify your address. The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under. There is no reason I can think for doing your folders the way you do the http(s) in the address has nothing to do with where your folders. And yes I have to smile at that. Kerry Kerry thnx for the reply..yes i have changed the configure.php to "true" as well as admin/includes/configure.php if i type in http(s)://www.mysite.com I get an error on the browser saying.. Certificate error:navigation blocked. The security certificate presented by this website was not issued by a trusted certificate authority. Im assuming thats because I havent have any files on my servers httpsdoc directory..i have all my files in httpdoc directory in the server.and If it ll help..heres the configure.php define('HTTP_SERVER', 'https://www.mysite.com'); define('HTTP_CATALOG_SERVER', 'https://mysite.com'); define('HTTPS_CATALOG_SERVER', 'https://www.mysite.com'); define('ENABLE_SSL_CATALOG', 'true'); define('DIR_FS_DOCUMENT_ROOT', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/'); define('DIR_WS_ADMIN', '/catalog/admin/'); define('DIR_FS_ADMIN', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/admin/'); define('DIR_WS_CATALOG', '/catalog/'); define('DIR_FS_CATALOG', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/'); thnx for your time. Link to comment Share on other sites More sharing options...
kori80 Posted May 20, 2011 Author Share Posted May 20, 2011 oh and i havent done anything with the .htaccess yet :) and I have a feeling If I direct the visitor to https://www.mysite.com when they type in the browser www.mysite.com it might do the trick maybe? Shoot I saw a post about adding the code to the .htaccess file for redirecting like 5 hours ago where was it? where was it? lol Link to comment Share on other sites More sharing options...
kori80 Posted May 20, 2011 Author Share Posted May 20, 2011 oh and i havent done anything with the .htaccess yet :) and I have a feeling If I direct the visitor to https://www.mysite.com when they type in the browser www.mysite.com it might do the trick maybe? Shoot I saw a post about adding the code to the .htaccess file for redirecting like 5 hours ago where was it? where was it? lol I cant copy or edit the .htaccess. I tried to rename it, copy it, move it,view it, setting the permissions to it but it wont let me. Is that means I have to contact my host? Link to comment Share on other sites More sharing options...
KDM Posted May 20, 2011 Share Posted May 20, 2011 The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under. This is just an example that you could use http with or without the "s" and would have no affect on the certificate. You never would write the address as http(s);//mysite.com Your settings are a little off and hopefully that is not your real path to your main folder. You should x out what you don't want other people to know is in the path. Check these links out: SSL Implementation Help Quick Install Guide Security issue with admin directory for shops using osc2.2 RC1 and RC2 In your browser use the "find" function under "edit" search on each page something like: define('HTTP_CATALOG_SERVER', or any other phrase that you want to search for. This will help to keep you from reading the whole forum. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.