Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

is it possible to activate SSL even though i didnt


varvunt

Recommended Posts

even though i didnt choose it during the initial installation?

Yes go into your two configure.php files and change the setting and add the correct ssl paths.

The Knowledge Base is a wonderful thing.

Do you have a problem? Have you checked out Common Problems?

There are many very useful osC Contributions

Are you having trouble with a installed contribution? Have you checked out the support thread found Here

BACKUP BACKUP BACKUP!!! You did backup, right??

Link to comment
Share on other sites

I have to do this.

Could you explain further please?

 

I know the one setting that needs changing but the paths are confusing me a bit.

Would a step by step guide with examples be possible?

 

It would be much appreciated :D

always here to offer some useless advice....

Link to comment
Share on other sites

go to configure.php in catalog/includes and change this:

look at:

'HTTPS_SERVER'

'HTTPS_COOKIE_DOMAIN'

'HTTPS_COOKIE_PATH'

'ENABLE_SSL'

 

 

define('HTTP_SERVER', 'http://www.innerearaudio.com'); // eg, http://localhost - should not be empty for productive servers
?define('HTTPS_SERVER', 'https://www.innerearaudio.com'); // eg, https://localhost - should not be empty for productive servers
?define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure?
?define('HTTP_COOKIE_DOMAIN', 'www.innerearaudio.com');
 define('HTTPS_COOKIE_DOMAIN', 'www.innerearaudio.com');
?define('HTTP_COOKIE_PATH', '/catalog/');
?define('HTTPS_COOKIE_PATH', '/catalog/');

 

Now in /catalog/admin/includes change this:

 

Look at:

'HTTPS_CATALOG_SERVER'

'ENABLE_SSL_CATALOG'

 

define('HTTP_SERVER', 'http://www.innerearaudio.com'); // eg, http://localhost - should not be empty for productive servers
?define('HTTP_CATALOG_SERVER', 'http://www.innerearaudio.com');
?define('HTTPS_CATALOG_SERVER', 'https://www.innerearaudio.com');
?define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

 

And your ready to go.

 

Also copy all files and images and includes and boxes that will be in a HTTPS into the Private_html folder.

 

OScommerce is coded to stay in HTTP until checkout. then it goes to HTTPS and the admin is HTTPS as well!

 

good luck

Link to comment
Share on other sites

Also copy all files and images and includes and boxes that will be in a HTTPS into the Private_html folder.

That might be a little misleading since only some servers have such a "private" or "secure" folder for ssl connections. Many do not, so if you don't have one don't waste time looking for it.

 

It's much easier to use servers that don't need them since no duplication of files is necessary.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Link to comment
Share on other sites

i have had 5 different servers most of which were shared. All have had a secure or private or simular folder especially if you had a shared SSL.

 

but thanks for the tip. didn't realize you couldn't have a secure area... doesn't make sense to not have one!

Link to comment
Share on other sites

thanks for the responses

ours is a dedicated server

 

what files would i need to put into this private folder?

 

how i did it before on another site was to put a redirect on every page (not using oscommerce tho) which redirected to https://whatever url they were at... if they accessed a http:// page

 

but i dont think this will work for oscommerce although it might if i stick it in the header.

always here to offer some useless advice....

Link to comment
Share on other sites

doesn't make sense to not have one!

Why?

 

As far as I can see it's a weakness for hosting firms that can not secure their entire network. It's certainly no advantage since it requires more work and complications.

 

It would be one of the first things I'd consider when choosing a new host, I'd look for one that does not use the "private" folder. I've helped several people with ssl installs and only in a few cases was this required.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Link to comment
Share on other sites

What's the problem?

 

Have you set the config file? It's not a big problem to get it working. If you do have the private folder system then you can copy the entire catalog folder into the private_html folder.

 

The huge tradeoff with the whole private folder system is that you'll need to continually update both folders as you add products unless you take the time to strip out boxes which may display product images on the pages which are secure side.

 

There have been posts concerning methods to avoid this extra work but a quick search did not turn them up.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Link to comment
Share on other sites

i dont have the private folder thing

its all in one folder - the web directory of our dedicated server

we haven't installed the ssl yet...it was on todays to do list...but other things got in the way so ill hopefully be installing it tomorrow then ill change those files and post here if i have any probs

 

thanks for all your help.

always here to offer some useless advice....

Link to comment
Share on other sites

Hi

 

I have finally installed the SSL and changed the config file mentioned earlier in this topic. But when I go through the checkout system, I get all the way to the checkout_success page and it does not change to https://

 

I have changed the following settings (but that is all I have done.)

 

define('HTTPS_SERVER', 'http://www.myurl.co.uk');

 

define('ENABLE_SSL', true);

 

define('HTTPS_COOKIE_DOMAIN', 'http://www.myurl.co.uk');

 

define('HTTPS_COOKIE_PATH', '/');

 

define('DIR_WS_HTTPS_CATALOG', '/');

 

any ideas anyone?

always here to offer some useless advice....

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...