Hi all,<br /><br />I'm struggling with an osC site that uses SSL and wonder if anyone on here has any idea as to what the problem/solution might be?<br /><br />The SSL is one that I purchased and got TCH to setup within my reseller account.<br />It's effectively shared SSL, but only for my clients to use.<br /><br />The osCommerce store appears to work normally until the customer tries to login to their account. On clicking the login link the url changes from http:// to https:// as it should do and the login screen appears as normal.<br /><br />The user enters username & pass, clicks on the Login button and gets taken to a non-existant page. ~username/catalog//catalog/account.php<br /><br />Now, that's obviously the path that's wrong, there should only be 1 /catalog, not 2.<br /><br />If the user doesn't login to their account and instead sets up a new one (which automatically logs them in when done) then everything works OK - it's insecure until they come to the payment page - it then goes secure and is fine ... until .....<br /><br />When the "thanks for your order" message appears, clicking the Continue button (which should take them out of the ssl part of the site and back to the home page)<br />the store tries to send them to /~username/catalog//catalog/index.php <br /><br />Same problem again with the double catalog.<br /><br />Ah ha - I hear you cry! His configure.php file is incorrect ... yep, but I can't see why!<br /><br /><!--c1--><div class='codetop'>CODE</div><div class='codemain'><!--ec1-->/ Define the webserver and path parameters<br />// * DIR_FS_* = Filesystem directories (local/physical)<br />// * DIR_WS_* = Webserver directories (virtual/URL)<br /> Â define('HTTP_SERVER', 'http://www.clients-site.com'); // eg, http://localhost - should not be empty for productive servers<br /> Â define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~username/catalog/'); // eg, https://localhost - should not be empty for productive servers<br /> Â define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure?<br /> Â define('HTTP_COOKIE_DOMAIN', 'www.clients-site.com');<br /> Â define('HTTPS_COOKIE_DOMAIN', '');<br /> Â define('HTTP_COOKIE_PATH', '/catalog');<br /> Â define('HTTPS_COOKIE_PATH', '');<br /> Â define('DIR_WS_HTTP_CATALOG', '/catalog/');<br /> Â define('DIR_WS_HTTPS_CATALOG', '');<!--c2--></div><!--ec2--><br /><br />Above is the relevant part of configure.php<br /><br />I'm sure it's something dead easy, but my brain is frazzled now!<br />Anyone any ideas?<br /><br />Thanks muchly <img src="http://www.totalchoicehosting.com/forums/style_emoticons/default/smile.gif" style="vertical-align:middle" emoid="
" border="0" alt="smile.gif" /><br /><br />Ali.<!--content-->
Here is mine;<br /><br /><!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->// Define the webserver and path parameters<br />// * DIR_FS_* = Filesystem directories (local/physical)<br />// * DIR_WS_* = Webserver directories (virtual/URL)<br />Â define('HTTP_SERVER', '*****'); // eg, <a href="http://localhost" target="_blank">http://localhost</a> - should not be empty for productive servers<br />Â define('HTTPS_SERVER', 'https://www.****'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<br />Â define('ENABLE_SSL', true); // secure webserver for checkout procedure?<br />Â define('HTTP_COOKIE_DOMAIN', 'www.****');<br />Â define('HTTPS_COOKIE_DOMAIN', 'www.****');<br />Â define('HTTP_COOKIE_PATH', '/shop/');<br />Â define('HTTPS_COOKIE_PATH', '/shop/');<br />Â define('DIR_WS_HTTP_CATALOG', '/shop/');<br />Â define('DIR_WS_HTTPS_CATALOG',<b> '/shop/'</b>);<!--QuoteEnd--></div><!--QuoteEEnd--><br /><br />See the difference?<br /><br />Try that and see if it works.<!--content-->
Or possibly change <!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~username/catalog/'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<!--QuoteEnd--></div><!--QuoteEEnd--> to <!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~username'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<!--QuoteEnd--></div><!--QuoteEEnd--><!--content-->
Thanks Andy & Rob - your suggestions didn't work "straight out of the box", but by combining the two and messing around a bit more they helped solve the problem completely <img src="http://www.totalchoicehosting.com/forums/style_emoticons/default/kicking.gif" style="vertical-align:middle" emoid=":dance:" border="0" alt="kicking.gif" /><br /><br />Don't know why I couldn't see it myself!<br /><br />Just in case anyone else has the same problem and comes across this thread in a search ....<br /><br /><br /> <!--c1--><div class='codetop'>CODE</div><div class='codemain'><!--ec1-->Â define('HTTP_SERVER', 'http://www.clients-site.com'); // eg, http://localhost - should not be empty for productive servers<br /> Â define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~clients-username'); // eg, https://localhost - should not be empty for productive servers<br /> Â define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure?<br /> Â define('HTTP_COOKIE_DOMAIN', 'www.clients-site.com');<br /> Â define('HTTPS_COOKIE_DOMAIN', 'https://www.my-domain-for-ssl.com/~clients-username');<br /> Â define('HTTP_COOKIE_PATH', '/catalog/');<br /> Â define('HTTPS_COOKIE_PATH', '/catalog/');<br /> Â define('DIR_WS_HTTP_CATALOG', '/catalog/');<br /> Â define('DIR_WS_HTTPS_CATALOG', '/catalog/');<!--c2--></div><!--ec2--><br /><br />What made it a bit more complicated is the fact that the store is a domain within my reseller account rather than my main account.<br /><br />Thanks again <img src="http://www.totalchoicehosting.com/forums/style_emoticons/default/smile.gif" style="vertical-align:middle" emoid="" border="0" alt="smile.gif" /><br /><br />Ali.<!--content-->
" border="0" alt="smile.gif" /><br /><br />Ali.<!--content-->Here is mine;<br /><br /><!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->// Define the webserver and path parameters<br />// * DIR_FS_* = Filesystem directories (local/physical)<br />// * DIR_WS_* = Webserver directories (virtual/URL)<br />Â define('HTTP_SERVER', '*****'); // eg, <a href="http://localhost" target="_blank">http://localhost</a> - should not be empty for productive servers<br />Â define('HTTPS_SERVER', 'https://www.****'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<br />Â define('ENABLE_SSL', true); // secure webserver for checkout procedure?<br />Â define('HTTP_COOKIE_DOMAIN', 'www.****');<br />Â define('HTTPS_COOKIE_DOMAIN', 'www.****');<br />Â define('HTTP_COOKIE_PATH', '/shop/');<br />Â define('HTTPS_COOKIE_PATH', '/shop/');<br />Â define('DIR_WS_HTTP_CATALOG', '/shop/');<br />Â define('DIR_WS_HTTPS_CATALOG',<b> '/shop/'</b>);<!--QuoteEnd--></div><!--QuoteEEnd--><br /><br />See the difference?<br /><br />Try that and see if it works.<!--content-->
Or possibly change <!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~username/catalog/'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<!--QuoteEnd--></div><!--QuoteEEnd--> to <!--quoteo--><div class='quotetop'>QUOTE</div><div class='quotemain'><!--quotec-->define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~username'); // eg, <a href="https://localhost" target="_blank">https://localhost</a> - should not be empty for productive servers<!--QuoteEnd--></div><!--QuoteEEnd--><!--content-->
Thanks Andy & Rob - your suggestions didn't work "straight out of the box", but by combining the two and messing around a bit more they helped solve the problem completely <img src="http://www.totalchoicehosting.com/forums/style_emoticons/default/kicking.gif" style="vertical-align:middle" emoid=":dance:" border="0" alt="kicking.gif" /><br /><br />Don't know why I couldn't see it myself!<br /><br />Just in case anyone else has the same problem and comes across this thread in a search ....<br /><br /><br /> <!--c1--><div class='codetop'>CODE</div><div class='codemain'><!--ec1-->Â define('HTTP_SERVER', 'http://www.clients-site.com'); // eg, http://localhost - should not be empty for productive servers<br /> Â define('HTTPS_SERVER', 'https://www.my-domain-for-ssl.com/~clients-username'); // eg, https://localhost - should not be empty for productive servers<br /> Â define('ENABLE_SSL', 'true'); // secure webserver for checkout procedure?<br /> Â define('HTTP_COOKIE_DOMAIN', 'www.clients-site.com');<br /> Â define('HTTPS_COOKIE_DOMAIN', 'https://www.my-domain-for-ssl.com/~clients-username');<br /> Â define('HTTP_COOKIE_PATH', '/catalog/');<br /> Â define('HTTPS_COOKIE_PATH', '/catalog/');<br /> Â define('DIR_WS_HTTP_CATALOG', '/catalog/');<br /> Â define('DIR_WS_HTTPS_CATALOG', '/catalog/');<!--c2--></div><!--ec2--><br /><br />What made it a bit more complicated is the fact that the store is a domain within my reseller account rather than my main account.<br /><br />Thanks again <img src="http://www.totalchoicehosting.com/forums/style_emoticons/default/smile.gif" style="vertical-align:middle" emoid="
" border="0" alt="smile.gif" /><br /><br />Ali.<!--content-->