sneakersource Posted March 25, 2004 Share Posted March 25, 2004 I seem to be having a major problem with my login feature. I have created an account successfully in my store and then logout. When i go to login, i go to - https://host113.ipowerweb.com/~replicas/wholesale/login.phphttps://host113.ipowerweb.com/~replicas/wholesale/login.php and use the username (email address) and password it goes to the same url with a OScid on and a 404 Error! How mad is that... I have tried so many login pages, changes etc and now i am on an original copy of one. Can anyone see how i am getting these 404 errors? Here is the code i have for login here: <?php /* $Id: login.php,v 1.80 2003/06/05 23:28:24 hpdl Exp $ osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright (c) 2003 osCommerce Released under the GNU General Public License */ require('includes/application_top.php'); // redirect the customer to a friendly cookie-must-be-enabled page if cookies are disabled (or the session has not started) if ($session_started == false) { tep_redirect(tep_href_link(FILENAME_COOKIE_USAGE)); } require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_LOGIN); $error = false; if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'process')) { $email_address = tep_db_prepare_input($HTTP_POST_VARS['email_address']); $password = tep_db_prepare_input($HTTP_POST_VARS['password']); // Check if email exists $check_customer_query = tep_db_query("select customers_id, customers_firstname, customers_password, customers_email_address, customers_default_address_id from " . TABLE_CUSTOMERS . " where customers_email_address = '" . tep_db_input($email_address) . "'"); if (!tep_db_num_rows($check_customer_query)) { $error = true; } else { $check_customer = tep_db_fetch_array($check_customer_query); // Check that password is good if (!tep_validate_password($password, $check_customer['customers_password'])) { $error = true; } else { if (SESSION_RECREATE == 'True') { tep_session_recreate(); } $check_country_query = tep_db_query("select entry_country_id, entry_zone_id from " . TABLE_ADDRESS_BOOK . " where customers_id = '" . (int)$check_customer['customers_id'] . "' and address_book_id = '" . (int)$check_customer['customers_default_address_id'] . "'"); $check_country = tep_db_fetch_array($check_country_query); $customer_id = $check_customer['customers_id']; $customer_default_address_id = $check_customer['customers_default_address_id']; $customer_first_name = $check_customer['customers_firstname']; $customer_country_id = $check_country['entry_country_id']; $customer_zone_id = $check_country['entry_zone_id']; tep_session_register('customer_id'); tep_session_register('customer_default_address_id'); tep_session_register('customer_first_name'); tep_session_register('customer_country_id'); tep_session_register('customer_zone_id'); tep_db_query("update " . TABLE_CUSTOMERS_INFO . " set customers_info_date_of_last_logon = now(), customers_info_number_of_logons = customers_info_number_of_logons+1 where customers_info_id = '" . (int)$customer_id . "'"); // restore cart contents $cart->restore_contents(); if (sizeof($navigation->snapshot) > 0) { $origin_href = tep_href_link($navigation->snapshot['page'], tep_array_to_string($navigation->snapshot['get'], array(tep_session_name())), $navigation->snapshot['mode']); $navigation->clear_snapshot(); tep_redirect($origin_href); } else { tep_redirect(tep_href_link(FILENAME_DEFAULT)); } } } } if ($error == true) { $messageStack->add('login', TEXT_LOGIN_ERROR); } $breadcrumb->add(NAVBAR_TITLE, tep_href_link(FILENAME_LOGIN, '', 'SSL')); ?> <!doctype html public "-//W3C//DTD HTML 4.01 Transitional//EN"> <html <?php echo HTML_PARAMS; ?>> <head> <meta http-equiv="Content-Type" content="text/html; charset=<?php echo CHARSET; ?>"> <title><?php echo TITLE; ?></title> <base href="<?php echo (($request_type == 'SSL') ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>"> <link rel="stylesheet" type="text/css" href="stylesheet.css"> <script language="javascript"><!-- function session_win() { window.open("<?php echo tep_href_link(FILENAME_INFO_SHOPPING_CART); ?>","info_shopping_cart","height=460,width=430,toolbar=no,statusbar=no,scrollbars=yes").focus(); } //--></script> </head> <body marginwidth="0" marginheight="0" topmargin="0" bottommargin="0" leftmargin="0" rightmargin="0"> <!-- header //--> <?php require(DIR_WS_INCLUDES . 'header.php'); ?> <!-- header_eof //--> <!-- body //--> <table border="0" width="100%" cellspacing="0" cellpadding="0"> <tr> <td width="<?php echo BOX_WIDTH; ?>" valign="top"><table border="0" width="<?php echo BOX_WIDTH; ?>" cellspacing="0" cellpadding="2"> <!-- left_navigation //--> <?php require(DIR_WS_INCLUDES . 'column_left.php'); ?> <!-- left_navigation_eof //--> </table></td> <!-- body_text //--> <td width="100%" valign="top"><?php echo tep_draw_form('login', tep_href_link(FILENAME_LOGIN, 'action=process', 'SSL')); ?><table border="0" width="100%" cellspacing="0" cellpadding="0"> <tr> <td><table border="0" width="100%" cellspacing="0" cellpadding="0"> <tr> <td class="mainpageHeading"><?php echo HEADING_TITLE; ?></td> </tr> </table></td> </tr> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <?php if ($messageStack->size('login') > 0) { ?> <tr> <td><?php echo $messageStack->output('login'); ?></td> </tr> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <?php } if ($cart->count_contents() > 0) { ?> <tr> <td class="smallText"><?php echo TEXT_VISITORS_CART; ?></td> </tr> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <?php } ?> <tr> <td><table border="0" width="100%" cellspacing="0" cellpadding="2"> <tr> <td class="main" width="50%" valign="top"><b><?php echo HEADING_NEW_CUSTOMER; ?></b></td> <td class="main" width="50%" valign="top"><b><?php echo HEADING_RETURNING_CUSTOMER; ?></b></td> </tr> <tr> <td width="50%" height="100%" valign="top"><table border="0" width="100%" height="100%" cellspacing="1" cellpadding="2" class="infoBox"> <tr class="infoBoxContents"> <td><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="2"> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td class="main" valign="top"><?php echo TEXT_NEW_CUSTOMER . '<br><br>' . TEXT_NEW_CUSTOMER_INTRODUCTION; ?></td> </tr> <tr> <td><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td><table border="0" width="100%" cellspacing="0" cellpadding="2"> <tr> <td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> <td align="right"><?php echo '<a href="' . tep_href_link(FILENAME_CREATE_ACCOUNT, '', 'SSL') . '">' . tep_image_button('button_continue.gif', IMAGE_BUTTON_CONTINUE) . '</a>'; ?></td> <td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> </tr> </table></td> </tr> </table></td> </tr> </table></td> <td width="50%" height="100%" valign="top"><table border="0" width="100%" height="100%" cellspacing="1" cellpadding="2" class="infoBox"> <tr class="infoBoxContents"> <td><table border="0" width="100%" height="100%" cellspacing="0" cellpadding="2"> <tr> <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td class="main" colspan="2"><?php echo TEXT_RETURNING_CUSTOMER; ?></td> </tr> <tr> <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td class="main"><b><?php echo ENTRY_EMAIL_ADDRESS; ?></b></td> <td class="main"><?php echo tep_draw_input_field('email_address'); ?></td> </tr> <tr> <td class="main"><b><?php echo ENTRY_PASSWORD; ?></b></td> <td class="main"><?php echo tep_draw_password_field('password'); ?></td> </tr> <tr> <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td class="smallText" colspan="2"><?php echo '<a href="' . tep_href_link(FILENAME_PASSWORD_FORGOTTEN, '', 'SSL') . '">' . TEXT_PASSWORD_FORGOTTEN . '</a>'; ?></td> </tr> <tr> <td colspan="2"><?php echo tep_draw_separator('pixel_trans.gif', '100%', '10'); ?></td> </tr> <tr> <td colspan="2"><table border="0" width="100%" cellspacing="0" cellpadding="2"> <tr> <td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> <td align="right"><?php echo tep_image_submit('button_login.gif', IMAGE_BUTTON_LOGIN); ?></td> <td width="10"><?php echo tep_draw_separator('pixel_trans.gif', '10', '1'); ?></td> </tr> </table></td> </tr> </table></td> </tr> </table></td> </tr> </table></td> </tr> </table></form></td> <!-- body_text_eof //--> </tr> </table> <!-- body_eof //--> <!-- footer //--> <?php require(DIR_WS_INCLUDES . 'footer.php'); ?> <!-- footer_eof //--> <br> </body> </html> <?php require(DIR_WS_INCLUDES . 'application_bottom.php'); ?> Somehow there has to be a fix.... I changed the code to remove column right myself so that is not the problem... Help Link to comment Share on other sites More sharing options...
faqtech Posted March 25, 2004 Share Posted March 25, 2004 Hi there, I created an account on you site. The one thing that comes to mind is the file structure. Are all files upload and in the proper structure. Usually when you get a 404 that means the page it is getting directed to isn't there. I can't see any problems with your code. I noticed that you jump from http://www.replicas4u.com/wholesale/index.php to https://host113.ipowerweb.com/~replicas/who...?action=process there could be a path problem. Try looking into that. Sorry I couldn't be much help. Link to comment Share on other sites More sharing options...
Guest Posted March 25, 2004 Share Posted March 25, 2004 I'm having the same problem and it's driving me crazy. I can't figure it out. When I first click on the link to login it goes to the correct secure path: https://ewcinet.net/brandoncomputer.com/cat...Csid=3(....etc) But.... once I type in the e-mail address and password and click Sign In it shows the 404 page and the path shown in the address bar is now: https://ewcinet.net/catalog/index.php?osCsid=3(....etc) For some reason it's dropping the brandoncomputer.com that was there on the previous screen. I'm seeing this when the user logs in or completes an order. I'm hoping somebody can find a solution to this problem... I need all the help I can get on this one. Why would the path change after you click sign in? - Jim Link to comment Share on other sites More sharing options...
241 Posted March 25, 2004 Share Posted March 25, 2004 these look like being configure.php path issues No longer giving free advice. Please place deposit in meter slot provided. Individual: [=] SME: [==] Corporation: [===] If deposit does not fit one of the slots provided then you are asking too much! Is your Osc dated try Phoenix raising oscommerce from the ashes. Link to comment Share on other sites More sharing options...
Guest Posted March 26, 2004 Share Posted March 26, 2004 Here is my configure.php file. Nothing that I change seems to make a difference. <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright © 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.brandoncomputer.com'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://ewcinet.net'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.brandoncomputer.com'); define('HTTPS_COOKIE_DOMAIN', 'ewcinet.net/brandoncomputer.com'); define('HTTP_COOKIE_PATH', '/catalog/'); define('HTTPS_COOKIE_PATH', '/brandoncomputer.com/catalog/'); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/brandoncomputer.com/catalog/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', '/home/virtual/site40/fst/var/www/html/catalog/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('DB_SERVER', 'svr01.ewcinet.net'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', '[REMOVED FOR POST]'); define('DB_SERVER_PASSWORD', '[REMOVED FOR POST]'); define('DB_DATABASE', 'brandoncomputer_com_-_compstore'); define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql' ?> Any ideas? - Jim Link to comment Share on other sites More sharing options...
stevel Posted March 26, 2004 Share Posted March 26, 2004 I had this problem back when my host used the ~username syntax for https connections. osCommerce assumes that it can drop everything back to the host name. Not until my host switched to a different method of shared SSL (examplecom.secure.powweb.com for example.com) could I properly use osCommerce. Steve Contributions: Country-State Selector Login Page a la Amazon Protection of Configuration Updated spiders.txt Embed Links with SID in Description Link to comment Share on other sites More sharing options...
♥Vger Posted March 26, 2004 Share Posted March 26, 2004 Two things I noticed about your config file. Firstly, your https cookie path omits the http:// (it shouldn't), secondly, at the bottom of the file you haven't input mysql into "define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'" It should read define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql' I think it may be this last one that's your problem, as its used to store session data. Finally, if this doesn't solve it, check with IPower Web what version of php they have installed. I have heard of problems running oscommerce on their system before, because the version of php wasn't up to date. Hope this helps - Vger :) Link to comment Share on other sites More sharing options...
Guest Posted March 26, 2004 Share Posted March 26, 2004 This was a local copy of the file. On the server I changed it to 'mysql' already. The software caught that and gave me an error the first time I ran it. I'll make the other change you pointed out and see if it makes a difference. - Jim Link to comment Share on other sites More sharing options...
Guest Posted March 26, 2004 Share Posted March 26, 2004 I just fixed the https cookie path and that made no difference either. Looks like I'm just out of luck here with this app on my server. - Jim Link to comment Share on other sites More sharing options...
♥Vger Posted March 26, 2004 Share Posted March 26, 2004 Sorry, I quoted http and not https. Don't forget, if you're on a shared ssl that the path will look something like https://servername.yourhostompany.com/yourdomain.com Vger :) Link to comment Share on other sites More sharing options...
Guest Posted March 26, 2004 Share Posted March 26, 2004 This is what I have it changed to: define('HTTPS_COOKIE_PATH', 'https://ewcinet.net/brandoncomputer.com/catalog/'); But.... that did not fix it. Still trying to figure it out. I may have to start hunting for another solution so that I can get this up and running. - Jim Link to comment Share on other sites More sharing options...
sneakersource Posted March 27, 2004 Author Share Posted March 27, 2004 Here is my configure.php file. Nothing that I change seems to make a difference. <?php /* osCommerce, Open Source E-Commerce Solutions http://www.oscommerce.com Copyright ? 2003 osCommerce Released under the GNU General Public License */ // Define the webserver and path parameters // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.brandoncomputer.com'); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', 'https://ewcinet.net/brandoncomputer.com'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.brandoncomputer.com'); define('HTTPS_COOKIE_DOMAIN', 'ewcinet.net/brandoncomputer.com/brandoncomputer.com'); define('HTTP_COOKIE_PATH', '/catalog/'); define('HTTPS_COOKIE_PATH', '/catalog/'); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/catalog/'); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/'); define('DIR_FS_CATALOG', '/home/virtual/site40/fst/var/www/html/catalog/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); // define our database connection define('DB_SERVER', 'svr01.ewcinet.net'); // eg, localhost - should not be empty for productive servers define('DB_SERVER_USERNAME', '[REMOVED FOR POST]'); define('DB_SERVER_PASSWORD', '[REMOVED FOR POST]'); define('DB_DATABASE', 'brandoncomputer_com_-_compstore'); define('USE_PCONNECT', 'false'); // use persistent connections? define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql' ?> Any ideas? - Jim Hey there I edited your code and found that your https:// path was wrong and that the https cookie path needs to be set like that too. I changed these variables on my site and it worked fine! change - define('HTTPS_SERVER', 'https://ewcinet.net'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.brandoncomputer.com'); define('HTTPS_COOKIE_DOMAIN', 'ewcinet.net/brandoncomputer.com'); define('HTTP_COOKIE_PATH', '/catalog/'); define('HTTPS_COOKIE_PATH', '/brandoncomputer.com/catalog/'); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/brandoncomputer.com/catalog/'); to define('HTTPS_SERVER', 'https://ewcinet.net/brandoncomputer.com'); // eg, https://localhost - should not be empty for productive servers define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.brandoncomputer.com'); define('HTTPS_COOKIE_DOMAIN', 'ewcinet.net/brandoncomputer.com/brandoncomputer.com'); define('HTTP_COOKIE_PATH', '/catalog/'); define('HTTPS_COOKIE_PATH', '/catalog/'); define('DIR_WS_HTTP_CATALOG', '/catalog/'); define('DIR_WS_HTTPS_CATALOG', '/catalog/'); Hope it helps you, let me know if it does not Link to comment Share on other sites More sharing options...
Guest Posted March 28, 2004 Share Posted March 28, 2004 THANK YOU SOOOOOO MUCH!!! This fixed it and I am up and running now! I owe you one, Jim Link to comment Share on other sites More sharing options...
apodigm Posted April 1, 2004 Share Posted April 1, 2004 I am having the same problem. Can someone help me? <?php // * DIR_FS_* = Filesystem directories (local/physical) // * DIR_WS_* = Webserver directories (virtual/URL) define('HTTP_SERVER', 'http://www.racepartsdirect.com/'); // eg, http://localhost - should not be NULL for productive servers define('HTTPS_SERVER', 'https://secure.racepartsdirect.com/'); // eg, https://localhost - define('ENABLE_SSL', true); // secure webserver for checkout procedure? define('HTTP_COOKIE_DOMAIN', 'www.racepartsdirect.com'); define('HTTPS_COOKIE_DOMAIN', 'secure.racepartsdirect.com'); define('HTTP_COOKIE_PATH', '/'); define('HTTPS_COOKIE_PATH', '/'); define('DIR_WS_HTTP_CATALOG', ''); define('DIR_WS_HTTPS_CATALOG', ''); define('DIR_WS_IMAGES', 'images/'); define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/'); define('DIR_WS_INCLUDES', 'includes/'); define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/'); define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/'); define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/'); define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/'); define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/'); define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/'); define('DIR_FS_DOCUMENT_ROOT', '/home/account/www/'); define('DIR_FS_CATALOG', '/home/account/www/'); define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/'); define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/'); <<<SNIP>>>> define('STORE_SESSIONS', 'mysql'); // leave empty '' default handler or set to 'mysql' ?> Basically.. when a customer logins to the website they are directed to the secure.racepartsdirect.com domain. But unfortunately, as soon as they browse to a category or click another link (that is not secure.racepartsdirect.com), they loose thier session and get the login prompt again. In case it helps, here are the settings that I have for sessions in the admin console. (Per Phesis website suggestions concerning this sessions and AOL browsers.) Session Directory = /tmp Force Cookie Use = True Check SSL Session ID = False Check User Agent = False Check IP Address = False Prevent Spider Sessions = True Recreate Session = False Link to comment Share on other sites More sharing options...
apodigm Posted April 2, 2004 Share Posted April 2, 2004 Fixed it with this: http://www.oscommerce.com/forums/index.php?showtopic=72486&st=0 Link to comment Share on other sites More sharing options...
Babysweet Posted April 6, 2004 Share Posted April 6, 2004 I am using Ipower and am using a shared ssl, I am noticing that I can not log off, even when guests leave the admin who's online shows that I am still logged in. I have been messing with this all day with no or little success, the only thing is, when I get the 404 error if I click on several of the links then go back to the catalog I see the user greeting, from which I should have been logged off from. I have to say this is a little confusing, Sincerely, Joseph Seabert Link to comment Share on other sites More sharing options...
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.