Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

htpps not showing :(


kori80

Recommended Posts

Hello everyone,

 

After spending literally 12 hours on trying to install SSL, Im finally getting to an end..except a slight problem, https is not showing on the browser at all :)))

 

I got the cert and installed it and made sure the www.mysite.com is typed in correctly vs. mysite.com. When I go to the site I get no errors at all, its just the https or the lock on the bottom doesnt show. I altered both configure.php files and uploaded them correctly. I have couple related questions and If I can get any answer from you guys, we might find out my problem. First question is..since the site is not live yet, its located under /catalog folder. and i registered the SSL as www.mysite.com not www.mysite.com/catalog...Can that be the problem? Second..this might make some of you guys laugh..I have http and https folders in the server and all the files are in http folder. Should I be copying or moving any files to https folder to make the SSL work? If so which folders needs to be moved? Thnx in advance for your help.

Link to comment
Share on other sites

define('ENABLE_SSL', true);

 

Does the define 'ENABLE_SSL' in catalog/includes/configure.php look like the one above? This would make difference.

 

The SSL certificate does nothing for enabling SSL. It's role to inform customers that you are who you are. It will verify your identity only when the address you used as your identity is in the address bar.

You applied for your certificate as http(s)://www.mysite.com so:

As long as that address is sent back to the certificate company when someone clicks on the certificate your site will be verified.

If the address bar has http(s)://mysite.com in it:

As long as that address is sent back to the certificate company when someone clicks on the certificate your site will not be verified.

As far as the rest of the path goes that doesn't make any difference.

 

Check the above:

If you have not changed your .htaccess file to compensate for when someone comes to your site with http(s)://mysite.com.

Type into the address bar your website without the www, then click on the certificate. Now unless your certificate company handles it different than mine it will not verify your address.

 

The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under.

 

There is no reason I can think for doing your folders the way you do the http(s) in the address has nothing to do with where your folders. And yes I have to smile at that.

 

Kerry

Link to comment
Share on other sites

define('ENABLE_SSL', true);

 

Does the define 'ENABLE_SSL' in catalog/includes/configure.php look like the one above? This would make difference.

 

The SSL certificate does nothing for enabling SSL. It's role to inform customers that you are who you are. It will verify your identity only when the address you used as your identity is in the address bar.

You applied for your certificate as http(s)://www.mysite.com so:

As long as that address is sent back to the certificate company when someone clicks on the certificate your site will be verified.

If the address bar has http(s)://mysite.com in it:

As long as that address is sent back to the certificate company when someone clicks on the certificate your site will not be verified.

As far as the rest of the path goes that doesn't make any difference.

 

Check the above:

If you have not changed your .htaccess file to compensate for when someone comes to your site with http(s)://mysite.com.

Type into the address bar your website without the www, then click on the certificate. Now unless your certificate company handles it different than mine it will not verify your address.

 

The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under.

 

There is no reason I can think for doing your folders the way you do the http(s) in the address has nothing to do with where your folders. And yes I have to smile at that.

 

Kerry

 

 

Kerry thnx for the reply..yes i have changed the configure.php to "true" as well as admin/includes/configure.php

if i type in http(s)://www.mysite.com I get an error on the browser saying..

Certificate error:navigation blocked.

The security certificate presented by this website was not issued by a trusted certificate authority.

 

Im assuming thats because I havent have any files on my servers httpsdoc directory..i have all my files in httpdoc directory in the server.and If it ll help..heres the configure.php

 

define('HTTP_SERVER', 'https://www.mysite.com');

define('HTTP_CATALOG_SERVER', 'https://mysite.com');

define('HTTPS_CATALOG_SERVER', 'https://www.mysite.com');

define('ENABLE_SSL_CATALOG', 'true');

define('DIR_FS_DOCUMENT_ROOT', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/');

define('DIR_WS_ADMIN', '/catalog/admin/');

define('DIR_FS_ADMIN', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/admin/');

define('DIR_WS_CATALOG', '/catalog/');

define('DIR_FS_CATALOG', '/usr/local/pem/vhosts/255457/webspace/httpdocs/catalog/');

 

thnx for your time.

Link to comment
Share on other sites

oh and i havent done anything with the .htaccess yet :) and I have a feeling If I direct the visitor to https://www.mysite.com when they type in the browser www.mysite.com it might do the trick maybe? Shoot I saw a post about adding the code to the .htaccess file for redirecting like 5 hours ago where was it? where was it? lol

Link to comment
Share on other sites

oh and i havent done anything with the .htaccess yet :) and I have a feeling If I direct the visitor to https://www.mysite.com when they type in the browser www.mysite.com it might do the trick maybe? Shoot I saw a post about adding the code to the .htaccess file for redirecting like 5 hours ago where was it? where was it? lol

 

I cant copy or edit the .htaccess. I tried to rename it, copy it, move it,view it, setting the permissions to it but it wont let me. Is that means I have to contact my host?

Link to comment
Share on other sites

The reason for the (s) is because your certificate company does not care whether you use https or http, it just looks at your the address you applied under.

 

This is just an example that you could use http with or without the "s" and would have no affect on the certificate. You never would write the address as http(s);//mysite.com

 

Your settings are a little off and hopefully that is not your real path to your main folder. You should x out what you don't want other people to know is in the path.

 

Check these links out:

 

SSL Implementation Help

Quick Install Guide

Security issue with admin directory for shops using osc2.2 RC1 and RC2

 

In your browser use the "find" function under "edit" search on each page something like:

 

define('HTTP_CATALOG_SERVER',

 

or any other phrase that you want to search for. This will help to keep you from reading the whole forum.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...