tanlogic Posted December 4, 2003 Posted December 4, 2003 Hi guys, I hope someone can help me out by pointing me to a previous thread or explaining what I am doing wrong in implementing my shared-ssl (I think its shared - they send it through a proxy server?) certificate onto the store I'm trying to set up. I've done some searching on the forum and will continue to look, but have not seen an answer as of yet... I am going to leave out the real url and put in tansstore instead right now...I'm a little embarrased at the site right now, but trust me I'll be singing off the mountain when done. :) Here is the setup. I got this free account on www.1and1.com and it comes with its own ssl setup. I have the url www.tansstore.com and created a subdomain called orders.tansstore.com - the subdomain automatically takes me to www.tansstore.com/catalog and I have through the 1and1.com admin panel added ssl ability to the orders.tansstore.com so that the url for https looks like https://ssl.perfora.net/orders.tansstore.com After the install, the links look correct, but I'm not getting a little lock at the bottom of the browser indicating that the SSL is in place. And the admin panel shows the SSL is not in place. I will go to orders.tansstore.com and when I click on the login which gives this link: https://ssl.perfora.net/orders.tansstore.co...40787fb66831cdf it goes to it, but no lock. There is only one time that I can get the lock to show, although briefly - if i try this url: https://ssl.perfora.net/orders.tansstore.com/ and press refresh, the lock will appear for a second then dissapear. Can someone help me out with this? BTW - not to advertise these guys or what not, but the account I got from 1and1.com is great - 3 free years and so far I have yet to see any strings attached. Only thing is no CF or ASP, which Im ok with since this is PHP! I stumbled upon it in an ad I saw in informationweek and thought it was too good to be true...hope it doesnt bite me in the butt later - but they dont even ask for a CC # - you have to signup by middle of Jan though... Thanks! Tan
abhaidani Posted December 5, 2003 Posted December 5, 2003 Yeah, from reading the posts here, I figured the same thing. To test the theory, I went into the config.php file and made the following change: ORIGINAL: define('HTTP_SERVER', 'http://www.mydomain.com'); CHANGE: define('HTTP_SERVER', 'https://ssl.perfora.net/mydomain.com'); This makes the entire site secure. If I click on My Account, the lock shows up. I think basically we have to change the code so that all images reference back to the https server instead of the http server, that should do it....is there an wasy way to do this?
abhaidani Posted December 5, 2003 Posted December 5, 2003 I haven't had much luck getting the admin panel secure. I also made the image folder an absolute reference and used the https:// address, but that doesn't work...so the only thing working so far is half ssl and half not, or having the entire site SSL, which obviously doesn't work either....
tanlogic Posted December 5, 2003 Author Posted December 5, 2003 catalog/includes/config.php I believe
tanlogic Posted December 5, 2003 Author Posted December 5, 2003 http://www.oscommerce.com/forums/index.php?sho...=0entry259301
tanlogic Posted December 5, 2003 Author Posted December 5, 2003 Link above fixed my problems - I ended up commenting out that line site wide and everything good so far. Tan
abhaidani Posted December 15, 2003 Posted December 15, 2003 Thanks Tan. It seems to have fixed my problems as well.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.