Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Making an OSC site "secure"


jestep

Recommended Posts

I have worked with my hosting service and a vendor of SSL certificates, been approved by them, & the hosting service has ?installed the certificate?. I can now have access to https://www.alphanautical.com. I have a logo downloaded from the SSL service in the footer of my osCommerce pages. I am running osCommerce 2.2-MS2.

 

The problem is that when I go to osCommerce Admin, I get the open lock symbol and following message in the lower left corner:

You are not protected by a secure SSL connection.

 

There is not a place on the ?Configuration? page that you can set (turn on, etc) to cause this to be corrected after the initial installation. There are bits & pieces of info on this subject and I have made the following changes:

 

In catalog/admin/includes/configure.php:

 

define('HTTP_SERVER', 'http://www.alphanautical.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'http://www.alphanautical.com');

define('HTTPS_CATALOG_SERVER', 'https://www.alphanautical.com');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/home/alphanau/public_html/catalog/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/home/alphanau/public_html/catalog/admin/'); // absolute path required

define('DIR_WS_CATALOG', '/catalog/'); // absolute path required

define('DIR_FS_CATALOG', '/home/alphanau/public_html/catalog/'); // absolute path required

 

In catalog/includes/configure.php:

 

define('HTTP_SERVER', 'http://www.alphanautical.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://www.alphanautical.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.alphanautical.com');

define('HTTPS_COOKIE_DOMAIN', 'www.alphanautical.com');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

 

I can attempt to purchase something, be forced to login, login properly, return to my purchase on an https page, use Paypal, etc.

(I am still working on my logos on the footer.) I am perplexed as to what to change to make the lower left-hand corner of my Admin page to show that my site is secure.

 

Does anyone have a clue as to how to make the site ?secure?????

 

Thanks, Joe :(

Joseph E. "Joe" Stephenson
[email protected]

Link to comment
Share on other sites

Are you using tep_href_link for all your links?? It looks like there are still some http references in your "view source" when I go to https site along with IE's "Do you want to display secure and non-secure items" popup.

Link to comment
Share on other sites

change the top line:

define('HTTP_SERVER', 'http://www.alphanautical.com');

 

to:

define('HTTP_SERVER', 'https://www.alphanautical.com');

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...