Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Installation of SSL


Guest

Recommended Posts

My site is nearly done, thanks to the ScriptFactory for configuring osCommerce. :) But, I still need to get the SSL installed so when you sign into the Catalog Admin page, it will say that SSL is installed. I have purchased SSL for the domain and it is installed for the site, but I cant figure out how to configure osCommerce so it is utilizing the https.

 

Can anyone help me?

 

Thank you in advance,

 

Kim Huff

Link to comment
Share on other sites

This fix was already posted, so here ya go :D

 

 

in your /admin/includes/configure.php you should find the following code near the top.

 

Change it from:

define('HTTP_SERVER', 'http://www.mysite.com');

 

 

To:

define('HTTP_SERVER', 'https://www.mysite.com');

 

 

This way your admin section will link in ssl mode only, except for the support site box, those links will stay as non-secure.

 

Thanks to Matti for the original post

Link to comment
Share on other sites

Well, when I actually enter, https://www.zimmerchiropractic.com/catalog/admin it works. BUT, when I go in and place an order, it is not utilizing the https for the checkout process.

 

I changed one option mentioned, but I am not seeing any difference.

 

Below is the admin/includes/configure.php file. Is there something else I should be changing there?

 

Thank you again.

 

Kim

 

<?php
/*
 osCommerce, Open Source E-Commerce Solutions
 http://www.oscommerce.com

 Copyright (c) 2003 osCommerce

 Released under the GNU General Public License
*/

// Define the webserver and path parameters
// * DIR_FS_* = Filesystem directories (local/physical)
// * DIR_WS_* = Webserver directories (virtual/URL)
 define('HTTP_SERVER', 'https://www.zimmerchiropractic.com'); // eg, http://localhost - should not be empty for productive servers
 define('HTTP_CATALOG_SERVER', 'http://65.18.217.19');
 define('HTTPS_CATALOG_SERVER', '');
 define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module
 define('DIR_FS_DOCUMENT_ROOT', '/usr/local/apache/htdocs/catalog/'); // where the pages are located on the server
 define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required
 define('DIR_FS_ADMIN', '/usr/local/apache/htdocs/catalog/admin/'); // absolute pate required
 define('DIR_WS_CATALOG', '/catalog/'); // absolute path required
 define('DIR_FS_CATALOG', '/usr/local/apache/htdocs/catalog/'); // absolute path required
 define('DIR_WS_IMAGES', 'images/');
 define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
 define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');
 define('DIR_WS_INCLUDES', 'includes/');
 define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
 define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
 define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
 define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
 define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
 define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
 define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
 define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
 define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

// define our database connection
 define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty for productive servers
 define('DB_SERVER_USERNAME', 'root');
 define('DB_SERVER_PASSWORD', 'y9D8or');
 define('DB_DATABASE', 'osCommerce');
 define('USE_PCONNECT', 'false'); // use persisstent connections?
 define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'
?>

Link to comment
Share on other sites

You can make these the same URL after the ://

 

define('HTTP_CATALOG_SERVER', 'http://65.18.217.19');

define('HTTPS_CATALOG_SERVER', 'https://65.18.217.19');

Link to comment
Share on other sites

I made the changes you suggested.... but when you go to checkout it still does not switch to a https.

 

Sorry to be such a pain.. any suggestions?

 

Kim

Link to comment
Share on other sites

Ralph,

 

I dont think I am having much luck here. I made the changes to the other location, but i started getting an error message at the top of the online store stating:

 

Warning: I am able to write to the configuration file: /usr/local/apache/htdocs/catalog/includes/configure.php. This is a potential security risk - please set the right user permissions on this file.

 

 

I am not sure what to do now. Again, I am sorry I am having so many problems with this.

 

Kim

Link to comment
Share on other sites

Relax, Kim. You're getting there. Both configure.php files need to be non-writable for routine store operation. I don't know how you access this file (perhaps you upload it each time or perhaps you edit it right on the server, I don't know).

 

I see you are on a Unix server. You can use your ftp program to change the mode of the file so that it is readable but not writable. Unix mode 444 will accomplish that. The ftp command to use is CHMOD.

 

I'm not sure which ftp program you use or if you use one at all. but if you do, locate and select the file and then find the CHMOD command through the ftp program's menu structre.

 

Ralph

Link to comment
Share on other sites

Ralph,

 

Well, you are right, that did fix the problem. I changed it to 444, but I am still not moving into the https mode when i move to checkout.

 

I have a guy that was doing all of this for me, but I havent been able to reach him for days... so i was trying to figure it out on my own.

 

Thanks,

 

Kim

Link to comment
Share on other sites

Yes, I see that it is not working. Send me an email if you'd like me to go in and diagnose it for you. Double check each line in both config files. It has to be simply a config problem. I see that the URL for the "My Account" link is not https either, so it must be a config problem.

 

Note that is your file mode was read-only previously and you tried to upload, you would still have the old file. Triple check the config files.

Link to comment
Share on other sites

You are welcome, Kim. You have forgotten to set this line to 'true' in catalog/includes/configure.php

 

define('ENABLE_SSL', false); // secure webserver for checkout procedure?

 

should be

 

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

 

A easy oversight.

 

Ralph

Link to comment
Share on other sites

  • 4 weeks later...

Is there a time lag between me making changes to the configure.php and when they are read? I've made all these changes and have the same problem.. it's not switching to SSL on checkout.

 

catalog/configure.php:

 

define('HTTP_SERVER', 'http://www.digital-masterpiece.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://www.digital-masterpiece.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'digital-masterpiece.com');

define('HTTPS_COOKIE_DOMAIN', 'digital-masterpiece.com');

 

admin/configure.php:

 

define('HTTP_SERVER', 'http://www.digital-masterpiece.com'); // eg, http://localhost or - https://localhost should not be NULL for productive servers

define('HTTP_CATALOG_SERVER', 'http://www.digital-masterpiece.com');

define('HTTPS_CATALOG_SERVER', 'https://www.digital-masterpiece.com');

define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module

Link to comment
Share on other sites

I found out that my problem was with the way my name was registered for the SSL. I didnt realize that a name registered as zimmerchiropractic.com was not the same as www.zimmerchiropractic.com. Once I removed the www in the config.php, everything worked great.

 

Thanks,

 

Kim

Link to comment
Share on other sites

Cloudswinger,

 

You need to set this to 'true' in your admin/configure.php

 

define('ENABLE_SSL_CATALOG', 'false');

 

It should be

 

define('ENABLE_SSL_CATALOG', 'true');

 

Changes to configure.php are immediate.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...