Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL only when paying


imbrian

Recommended Posts

Hello All.

 

I've seen some sites that only go the the SSL server when you about to enter your Credit Card details. This does not seem to be a part of the standard installation script. I see the option on the install of entering my SSL server which I've done.

 

When I go to register as a dummy user it wants to point towards my https:// space and not my normal http:// all the time.

 

Also my SSL space is empty since I did the basic install on my non secure space.

 

Anyone gone through these woes of splitting between SSL and non SSL? please pass on details.

 

Thanks.

imbrian

Link to comment
Share on other sites

seems to be a BIG problem, especially using shared SSL, and nobody here seems to have an answer. For it to work it seems that you need pretty much ALL of the files on both the normal and secure server :x

Link to comment
Share on other sites

Well at least its not just me then.

 

So the only way around this is to have your own SSL and not shared.

So most people who have shared certs go via the SSL for everything? even user registration?

 

What would be different if I had my own SSL? what the same duplicate directory problem still exist ? or do you only have one dir when you have your own SSL?

 

You must excuse my ignorance but I'm not very knowledgable of SSL but I'm desparately trying to read up.

 

Sorry about the double post of the subject header, my browser died but still sent the post through :oops:

Link to comment
Share on other sites

Well at least its not just me then.

 

So the only way around this is to have your own SSL and not shared.

So most people who have shared certs go via the SSL for everything? even user registration?

 

What would be different if I had my own SSL? what the same duplicate directory problem still exist ? or do you only have one dir when you have your own SSL?

 

You must excuse my ignorance but I'm not very knowledgable of SSL but I'm desparately trying to read up.

 

Sorry about the double post of the subject header, my browser died but still sent the post through :oops:

 

I have my own SSL at

www.discountmagazinehouse.com

SSL kicks in when you registar or sign in

 

Jeff

www.discountmagazinehouse.com

Link to comment
Share on other sites

If you have dedicated ssl you would still have to have duplicate directories or just host the whole site on ssl - just means that your URL's are all https - don't know what this does to search engines. Seems to be a bit of a gaping hole in osc that it doesn't let you just slip into SLL for the few bits where you actually need it (ie: supplying and retreiving credit card details)...thats one for the clever developer people :?

Link to comment
Share on other sites

OK,

 

So I worked out this shared SSL thing. You just have to put ALL of the files onto both the secure server and the normal one and it works fine, switching to SSL when you go to checkout / login. Also have to put ALL the admin files on both servers as well as there needs to be a secure server for collecting payments. Just one problem left....

 

I go through the checkout procedure fine, confrim order etc and then click "continue". It goes to the secure version of the catalog instead of the one on the normal server :x AAAAGGGGHHHH :x . I've got all the setting correct in my config files, but this link is obviously a relative one rather than absolute, so it just stays on the secure server. The problem is that this means i have to make changes to the secure catalog files each time I change the normal ones in case people use this link - otherwise I wouldn't have to do this. Can someone tell me how I can change this "continue" link on the confirmation page, or just get rid if the thing altogether? Please?

 

Thanks,

 

Justin

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...