Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

SSL.....Again


Guest

Recommended Posts

I've spent 10's of hours reading threads about this. I've tried a ton of posssible fixes and none have worked. I STILL cannot get the proper pages to go into SSL mode. My latest try was AlanR's numerous suggestions about a separate folder for security. I'm using Hsphere and it does create an ssl.conf folder with a subfolder named for the subdomain i'm trying to secure (that is shop.smokinmouse.com). That folder contains the certificate files. I tried an experiment of copying certain pages to one of these folders; webshell says they are copied but they aren't. I susupect it is because it is a root folder, not created by me, and the permissions will not allow it. And I can't change the permissions.

 

I am using my own SSL certificate, and it is properly installed and working. I'm wondering if there is a specific tweak needed for Hsphere configurations and if anyone might know what it is. I'm just totally out of ideas. I'm game for most any suggestion someone might have.

 

<<<<< And as you can see, Morey is getting a little belligerent :blink:

 

catalog/includes/configure

 

define('HTTP_SERVER', 'http://shop.smokinmouse.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://shop.smokinmouse.com/'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'shop.smokinmouse.com');

define('HTTPS_COOKIE_DOMAIN', 'shop.smokinmouse.com');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/hsphere/local/home/morey/shop.smokinmouse.com/catalog/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

 

admin/includes/configure

 

define('HTTP_SERVER', 'http://shop.smokinmouse.com'); // eg, http://localhost or - https://localhost should not be NULL for productive servers

define('HTTP_CATALOG_SERVER', 'http://shop.smokinmouse.com');

define('HTTPS_CATALOG_SERVER', 'https://shop.smokinmouse.com');

define('ENABLE_SSL_CATALOG', 'true'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/hsphere/local/home/morey/shop.smokinmouse.com'); // where your pages are located on the server. if $DOCUMENT_ROOT doesnt suit you, replace with your local path. (eg, /usr/local/apache/htdocs)

define('DIR_WS_ADMIN', '/admin/');

define('DIR_FS_ADMIN', DIR_FS_DOCUMENT_ROOT . DIR_WS_ADMIN);

define('DIR_WS_CATALOG', '/catalog/');

define('DIR_FS_CATALOG', DIR_FS_DOCUMENT_ROOT . DIR_WS_CATALOG);

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');

define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');

define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

 

After I try something that doesn't help, I restore to the original code so everything here should be the stock install. Any suggestions would be greatly appreciated.

Thanks.

Link to comment
Share on other sites

I'ts just http, never goes into https mode. I know there are just certain pages where this should happen, but it just doesn't do it.

Link to comment
Share on other sites

How did you accomplish this? :lol:

 

http://shop.smokinmouse.com

 

You can't just stick the certificate info in a folder. It's installed in folders above your http root.

 

I've never done an ssl certificate install so I can't offer any tips though.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Link to comment
Share on other sites

In your catalog configure.php, remove the trailing slash from HTTPS_SERVER. I don't think that's the real problem, though. I notice that the links that should be SSL on your catalog page, such as for login, aren't. But then look at what you have for a "My Account" link - http://shop.smokinmouse.com/catalog/accoun...LOCALS%7E1/Temp

 

I suspect there's more going on here than you've shown us. What rev of osC are you using?

Link to comment
Share on other sites

Alan - - Not sure to what you are referring as to how did I accomplish this. As far as the certificates are concerned, they are installed with the Hsphere control panel. I have no say in the folders it creates and sticks things into

 

You are right about the mixed content. IE never gave me this warning on the catalog/index page, even tho it is set to do so. Mozilla does. I can only conclude it's the images for the New Products box. How to go about fixing that I'm still working on.

 

Steve - - I took out that nasty slash, tho I agree, I don't think it was causing any real problem. That other thing took a bit of finding. I knew what it was. This has happened on several pages at least. For some reason, OSC tries to hijack the css file from my web site. This was a new one tho, sticking it into an IF statement, usually it just tries to put it in the head in place of the regular css statement.

 

Anyway, the upshot is, I'm making progress on this problem. It would seem I need to figure out those images. Back to the drawing board.

 

Thanks guys.

Link to comment
Share on other sites

<<<<< See how much happier Morey is now?????

 

I knew this had to be a problem in Hsphere. I did not install OSC through the control panel, just uploaded it myself. The connections between everything just weren't being made because of it. There is an edit function to restore certain things which I tried and now the SSL is working properly. It wiped out a few changes I had made along the way, but I'm not going to lose any sleep over fixing those. I've got all the altered files here....just have to find 'em.

 

Anyway........YEEEEEEEEHAWWWWWWWWWWWWWW

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...