Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Securing Admin Controls


up4anything

Recommended Posts

Hi,

 

Go to your configure.php files. There are two. One in admin/includes/ and the other in catalog/includes

 

Just set them up like this

 

define('HTTP_SERVER', 'http://www.YourDomain.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://www.YourDomain.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.YourDomain.com');

define('HTTPS_COOKIE_DOMAIN', 'https://www.YourDomain.com');

 

One file might be slightly different from the other, but is should be pretty obvious. Pay special attention to the https... people some times leave out the "s".

 

Good luck,

 

Dave

Link to comment
Share on other sites

If you want to "secure" the actual folder within your site, so that if someone types in www.yoursite.com/admin they will get the popup box asking for username and password (and can't access without it), you should be able to do that via your hosting control panel (something along the lines of "password protect directories")

 

If you don't have that option, you can do it with .htaccess file. I haven't a clue how to do it that way though, so I won't lead you in the wrong direction..

-------------------------------------------------------

 

I used to be insane, but now I'm just nuts ;)

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...