Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Have new SSL Cert...


keithxtreme

Recommended Posts

Posted

Ok I bought an SSL and my hosting company set it all up with https://secure.xtremecrawlers.com and instructed me to move my complete OSCommerce /catalog/ folder to the secure folder I do this and can get a secure connection images show up and everything, but category and product links and logging in still go to http not https. And when I go to the admin it will not let me log in at all, I enter login and pass over and over and over...nothing.

 

I am running osCommerce 2.2-MS2

 

I have done tons of searchs, but nothing on a setup like this can I find. I had to move my catalog out of the secure folder, because my site is live. here are my configs, can anyone help me put the correct info in? These are the original with no ssl edits...

 

this is catalog/includes/ configure.php...

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.xtremecrawlers.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', false); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.xtremecrawlers.com');

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/var/www/html/www.xtremecrawlers.com/catalog/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

// define our database connection

define('DB_SERVER', 'server-72.mcc-sys.com'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', 'my login');

define('DB_SERVER_PASSWORD', 'my password');

define('DB_DATABASE', 'xtremecrawlers_store');

define('USE_PCONNECT', 'false'); // use persistent connections?

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

?>

Posted

And this is catalog/admin/includes/configure.php

 

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.xtremecrawlers.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTP_CATALOG_SERVER', 'http://www.xtremecrawlers.com');

define('HTTPS_CATALOG_SERVER', '');

define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module

define('DIR_FS_DOCUMENT_ROOT', '/var/www/html/xtremecrawlers.com/catalog/'); // where the pages are located on the server

define('DIR_WS_ADMIN', '/catalog/admin/'); // absolute path required

define('DIR_FS_ADMIN', '/var/www/html/xtremecrawlers.com/catalog/admin/'); // absolute pate required

define('DIR_WS_CATALOG', '/catalog/'); // absolute path required

define('DIR_FS_CATALOG', '/var/www/html/xtremecrawlers.com/catalog/'); // absolute path required

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_CATALOG_IMAGES', DIR_WS_CATALOG . 'images/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_CATALOG_LANGUAGES', DIR_WS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');

define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');

define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');

define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');

 

// define our database connection

define('DB_SERVER', 'server-72.mcc-sys.com'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', 'my login');

define('DB_SERVER_PASSWORD', 'my password');

define('DB_DATABASE', 'xtremecrawlers_store');

define('USE_PCONNECT', 'false'); // use persisstent connections?

define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'mysql'

?>

Posted

First, the only pages that should be SSL are the account and checkout pages. Everything else does not need to be secure. You are alright though to leave the files where you have them. Just edit your includes/configure.php and admin/includes/configure.php files to enable ssl and point to the appropriate url:

 

includes/configure.php edit these lines:

 

define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', false); // secure webserver for checkout procedure?

define('HTTPS_CATALOG_SERVER', '');

 

admin/includes/configure.php edit these lines:

 

define('ENABLE_SSL_CATALOG', 'false'); // secure webserver for catalog module

define('HTTPS_CATALOG_SERVER', '');

 

change 'false' to 'true' on both and put your secure url for https_server. for https_catalog_server set it to 'secure.xtremecrawlers.com'

 

That should work for you.

Posted

This line:

 

define('HTTPS_CATALOG_SERVER', '');

 

is not in the includes/configure.php

 

only in the admin/includes/configure.php

 

so do I just change the admin one?

Posted

That worked on the admin side, I now have secure admin access it works great. But I do have my admin folder in the secure directory. I have a catalog and admin in the regular and secure directories, so I have 2 copies of my store on my server.

 

But on the catalog side the account and checkout never go secure with those settings...

Posted

They are... the admin works great. you go to admin and that little lock is not lock but who cares. As soon as you click to enter and edit it goes secure. But that is just because I have a copy in the secure folder.

 

But the catalog side will not go secure, I try to edit an account create a new account, place an order. It does not go secure. This is what I have...

 

Oh and by the way thanks for the help I really appreciate it.

 

define('HTTP_SERVER', 'http://www.xtremecrawlers.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://secure.xtremecrawlers.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', true); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.xtremecrawlers.com');

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

Posted

I missed a couple lines earlier:

 

define('HTTPS_COOKIE_DOMAIN', '');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '');

 

You need to set the HTTPS ones to point to the appropriate directories on the secure server.

 

P.S. Nice Site!!!

Posted

I tried that earlier, I think what it is... I need to have my hosting company do a symbolic link from my un-secure catalog folder to my secure folder.

 

Also I have not installed linkpoint yet, so there really is no reason for the site to go jump to SSL I just have paypal and check or money order print out.

 

So without any credit card numbers I wonder if the catalog would even try to secure the account settings. just a thought

 

So if I told the hosting company to do the symbolic link would that change all of these settings we have done tonight?

 

Also wouldnt that make it easier so I do not have to keep multiple copies of the catalog?

 

 

Thanks for the site comment!

Posted

One more thing with the symbolic link, do I have them link the secure to un-secure or un-secure to secure?

 

Because if I linked the secure to the un-secure and had nothing in the secure folder would it still show in the browser that it is a secure connection?

Posted

You've got a problem more fundamental than the typical ssl problem. The symbolic link might help later but it's not going to fix today's problem.

 

There's been tons of posts here by newbies that have problems because they turned ssl on during install but got errors because they did not have it. The s/w does not check for the availabilty of an ssl connection before it makes the https links available.

 

So even without having ssl available the http site's front page should show a link to https when you hover over log in.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Posted

So what do I do? they have added the symbolic link, I have nothing in my secure folder. My admin pages work fine they go secure with no problems. but I cannot get any part of the catalog to go secure...

Posted
So what do I do? they have added the symbolic link, I have nothing in my secure folder. My admin pages work fine they go secure with no problems. but I cannot get any part of the catalog to go secure...

Post the entire catalog/includes/configure.php file again so we can see it's current contents. I went back through the thread and I've seen suggestions but never the final product.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Posted

<?php

/*

osCommerce, Open Source E-Commerce Solutions

http://www.oscommerce.com

 

Copyright © 2003 osCommerce

 

Released under the GNU General Public License

*/

 

// Define the webserver and path parameters

// * DIR_FS_* = Filesystem directories (local/physical)

// * DIR_WS_* = Webserver directories (virtual/URL)

define('HTTP_SERVER', 'http://www.xtremecrawlers.com'); // eg, http://localhost - should not be empty for productive servers

define('HTTPS_SERVER', 'https://secure.xtremecrawlers.com'); // eg, https://localhost - should not be empty for productive servers

define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure?

define('HTTP_COOKIE_DOMAIN', 'www.xtremecrawlers.com');

define('HTTPS_COOKIE_DOMAIN', 'secure.xtremecrawlers.com');

define('HTTP_COOKIE_PATH', '/catalog/');

define('HTTPS_COOKIE_PATH', '/catalog/');

define('DIR_WS_HTTP_CATALOG', '/catalog/');

define('DIR_WS_HTTPS_CATALOG', '/catalog/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/var/www/html/xtremecrawlers.com/catalog/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

// define our database connection

define('DB_SERVER', 'server-72.mcc-sys.com'); // eg, localhost - should not be empty for productive servers

define('DB_SERVER_USERNAME', 'xxxxxxxx');

define('DB_SERVER_PASSWORD', 'xxxxxxx');

define('DB_DATABASE', 'xtremecrawlers_store');

define('USE_PCONNECT', 'false'); // use persistent connections?

define('STORE_SESSIONS', 'mysql'); // leave empty '' for default handler or set to 'mysql'

?>

Posted

Gimee a while, I'm looking through the code for a place to break in and test.

Local: Mac OS X 10.5.8 - Apache 2.2/php 5.3.0/MySQL 5.4.10 • Web Servers: Linux

Tools: BBEdit, Coda, Versions (Subversion), Sequel Pro (db management)

Posted

I fixed it !!!!

 

 

In the catalog/includes/local/configure.php there was one more configure file no one knew about or forgot about I just set this file up exactly as the catalog/includes/configure.php and everything works fine...

Posted

keithxtreme -

 

I owe you a beer!!

 

I was the other one having the same problem. Just now I went into the local/configure.php file, fixed it up, and it works perfectly! You saved me from about a dozen more hours of headaches and frustration.

 

Thanks a lot!!

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...