Ady Posted January 8, 2004 Share Posted January 8, 2004 After someone has made an order, they get to the page 'Your order has been processed!'. On that page there is a continue button which when clicked, takes them back to the store front page. However, I am set up with SSL and when the button is clicked, it comes up with a warning box, 'You are about to be redirected to a page that is not secure etc' Is there any way of getting rid of this error box, such as making the jump to the main page in SSL? I have checked the checkout_success.php and found the button code, but cant work out how to make it jump to an ssl page. Any help would be appreciated Thanks Ady. Link to comment Share on other sites More sharing options...
Guest Posted January 8, 2004 Share Posted January 8, 2004 being redirected to a page that is not secure, means something is wrong with your ssl or images are in non secure folders, etc . . . post the domain address so we can help guide you. when people register or go to 'my account' are they on a secure page then? Link to comment Share on other sites More sharing options...
chfields Posted January 8, 2004 Share Posted January 8, 2004 I don't think it would be an SSL problem because you are going from a secure page(order) to non secure(catalog). It may be a setting with the certificate, I'm not sure because I have a shared SSL and I don't get the warning on my site, however, I have seen that on other sites.... Link to comment Share on other sites More sharing options...
Ady Posted January 8, 2004 Author Share Posted January 8, 2004 Everything works as it should in ssl, padlock shows up etc on all the pages it should. Its just once the order has been submitted, the continue button to take them back to the main page throws up the warning box. Its not so much a problem, but really I would prefer it not to appear. This is on the page with the big surfer gif confirming the order has been submitted. Payment has then been made etc and the order recorded in admin etc. I have seen other sites with the same warning box, but it just seems to me unprofessional to have it come up if it can be avoided. Site address is www.avmdvds.com, but you wont actually get to see the problem without making an order. If you want to check it out, I have set up a test account [email protected], Password TESTING...please select the check payment method for payment. Just another point aswell...using SSL, is it right I have to have 2 copies of all images on my site, one in the normal catalog folders, and one set in my SECURE folder? I have used the configure.php to put in both my http address and then my https address, but unless you have copies of all files in both folders, it comes up with Cant Find Page error. The link it generates is correct using https://secure.avmdvds.com as the domain, with the SID code on the end. As I dont have any reference in configure.php to COOKIE_DOMAIN, could this be a problem with the page not found error? and having to have 2 sets of all files in both folders? This is eventually going to take up a huge chunk of space with 2 copies of all images being stored. I tried pointing all references to images to the ones in the SECURE folder only, but this slows down the pages too much, so its not really feasible. This is my last thing i need to get sorted before fully populating my store and making it live, so I would really appreciate any help anyone can give me. Thanks Link to comment Share on other sites More sharing options...
Guest Posted January 8, 2004 Share Posted January 8, 2004 i dont get a cookie nor do i see your ssl padlock, your pages are really really long . myself, if i dont see that things are encrypted, and i know yours is not, as your site is not a trusted site on my system, you are not using ssl properly. could be a few settings in the configure.php also enable cookies in admin Link to comment Share on other sites More sharing options...
Ady Posted January 8, 2004 Author Share Posted January 8, 2004 Not quite sure why the padlock isnt appearing. It appears no problem on my system and others I have tested it on aswell on all the accout pages. (even the login page) In respect of the long long pages, thats not really a problem, I can just shrink the files sizes of the dvd images. Its hard to tell how long pages actually take to load when using a broadband connection, you just get used to them appearing quickly. Thanks for pointing that out, thats something else for me to do then before launch :( In my mention of storing images in the secure and non secure folders, is this the right way to go about things or should I only really have 1 copy? Link to comment Share on other sites More sharing options...
Guest Posted January 8, 2004 Share Posted January 8, 2004 all depends upon your ssl cert and how it works on your domain. i have one copy on most sites, as to encrypt is to point to ssl when i need it, and the guys here have designed the program well enough, that when it needs to be on ssl, it does switch if you have it set up correctly,. Link to comment Share on other sites More sharing options...
Ady Posted January 8, 2004 Author Share Posted January 8, 2004 My configure.php is set up as follows: define('HTTP_SERVER', 'http://www.avmdvds.com'); define('HTTPS_SERVER', 'https://secure.avmdvds.com'); define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure? define('DIR_WS_CATALOG', '/store/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); // If "URL fopen wrappers" are enabled in PHP (which they are in the default configuration), this can be a URL instead of a local pathname define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/'); define('DIR_FS_DOCUMENT_ROOT', $DOCUMENT_ROOT); // where your pages are located on the server. if $DOCUMENT_ROOT doesnt suit you, replace with your local path. (eg, /usr/local/apache/htdocs) define('DIR_FS_CATALOG', DIR_FS_DOCUMENT_ROOT . DIR_WS_CATALOG); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); I dont have any reference in there to COOKIE DOMAIN etc. When you go to a page which is secure, eg login, the browser takes you to the right place, ie https://secure.avmdvds.com/store/login.php , but unless you have a copy of login.php in the SECURE folder, it comes up with a page not found error. I am sure I have seen on here somewhere saying that you dont need any files on your SSL server, but the standard store files are just accessed in secure mode. Could be wrong tho. I havent got any option in admin to turn on cookies either..can i do this manually in one of the files? And can anyone else see the shiny gold padlock? Link to comment Share on other sites More sharing options...
Guest Posted January 8, 2004 Share Posted January 8, 2004 are you perhaps running MS1? your store opens with default.php, MS2 uses index.php. you may want to consider upgrading, it is a much better and more reliable version, as well as takes advantage of many more things. Link to comment Share on other sites More sharing options...
Ady Posted January 9, 2004 Author Share Posted January 9, 2004 I was wondering why i seem to have a lot less options than most people on here do from application_top tho : define('PROJECT_VERSION', 'osCommerce 2.2-CVS'); I have added quite a lot of contributions to this, so to upgrade to the latest version and start again from scratch is a little off putting. If i can get this to work how i want it to, i would prefer to leave alone for now. Quite a lot of people have visited my site since i put up this post, so please someone else reply and let me know if the padlock is showing on your system? Thanks again. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.