Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL problem my cart is dropping


sgtpepper

Recommended Posts

Posted

Hello all, :D

 

I would like to add an image in the "Whats New Here" page, under the text. I've also succesfuly created an "About Us" page under the "information" box, whichI would like to put an image of a map as well.

 

Sorry for the silly question. I have searched, but haven't been able to find a solution fot this problem. I know it must be easy, but when I try to add any images I get errors. :(

 

Thanks for the help! :)

Posted

Hi,

 

I am having a problem with sessions being dropped when I go from my non-secure to secure server.

 

Basically, what happens is that I go to the store..(non-secure) and add products....they show up fine in the cart. But when I go to checkout they disappear (cart is emty).

 

My non-secure store is on 1 machine...while the SSL is on a totally differet machine.

 

For lack of knowing EXACTLY what files need to be placed in the secure directory, I placed all CATALOG files, IMAGES dir, and INCLUDES dir in my secure directory.

 

In my configure.php (non-secure dir) I have the following:

 

'HTTPS_SERVER' - The URL of my secure dir

'ENABLE_SSL', true

'HTTP_COOKIE_DOMAIN', 'www.mydomain.com');

'HTTPS_COOKIE_DOMAIN', 'www.mydomain.com');

'HTTP_COOKIE_PATH', '/catalog/');

'HTTPS_COOKIE_PATH', '/catalog/');

'DIR_WS_HTTP_CATALOG', '/catalog/');

'DIR_WS_HTTPS_CATALOG', '/catalog/');

'USE_PCONNECT', 'true'); // use persistent connections?

'STORE_SESSIONS', ''); //

 

These are also the same in my configure.php in my secure directory as well.

 

In the admin I have:

Session Directory /sessiontempfiles

Force Cookie Use False

Check SSL Session ID False

Check User Agent False

Check IP Address False

Prevent Spider Sessions True

Recreate Session False

 

I can actually see session files in /sessiontempfiles

 

Can you think of anything that I could be doing wrong? I think I have checked everything....could something not be turned on in apache or mysql?

 

Thanks for any help.

Are Oompa-Loompa's asexual?

Posted

Try changing this setting:

define('USE_PCONNECT', 'false'); // use persistent connections?

 

I had a problem with orders falling out of the cart awhile back that drove me crazy until I changed this setting. It just may help. For what it's worth, I leave store STORE_SESSIONS blank (can't remember what you had there now that I'm on the post screen.)

 

BTW, I use a shared SSL and have the same Admin session settings as you.

Posted
(can't remember what you had there now that I'm on the post screen.)
While posting, if you scroll down, you should be able to see the last 10 posts in the thread.

 

To the original poster, I would change the following settings:

'HTTPS_COOKIE_DOMAIN', 'domain from the HTTPS_SERVER');
'HTTPS_COOKIE_PATH', '/');
'USE_PCONNECT', 'false');
'STORE_SESSIONS', 'mysql');

Your cookie domain may be correct now, and the next two may be working values. Unless you share file systems between the two machines, you must use mysql to store the sessions; otherwise, you are using two different directories to store the sessions.

 

Hth,

Matt

Posted

Oh, duh, thanks for the scroll down tip! B)

 

Where did the variables 'HTTP_COOKIE_DOMAIN', and 'HTTP_COOKIE_PATH' get introduced? I'm on 2.2ms1 and don't recall ever seeing those settings.

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...