Loosing secure connection when adding items to cart
1.51 version ... SSL with dedicated IP
The site is covered under the SSL for added protection but when an item is added to the cart it looses the connection and this warning message pops up <<Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.>> What have I done wrong? Can I connect to the cart securely?
Beth
Re: Loosing secure connection when adding items to cart
Quote:
Originally Posted by
motherwestwind
1.51 version ... SSL with dedicated IP
The site is covered under the SSL for added protection but when an item is added to the cart it looses the connection and this warning message pops up <<Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.>> What have I done wrong? Can I connect to the cart securely?
Beth
Is your SSL cert issued for https://www.your_domain.com or for https://your_domain.com (without the www)?
Whatever the SSL is issued for, the defines in your includes/configure.php file must match it.
Assuming your SSL is issued for https://your_domain.com (without the www) then the entries should look like this:
PHP Code:
// Define the webserver and path parameters
// HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
define('HTTP_SERVER', 'http://your_domain.com');
define('HTTPS_SERVER', 'https://your_domain.com');
// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');
// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
// these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
define('DIR_WS_CATALOG', '/');
define('DIR_WS_HTTPS_CATALOG', '/');
Re: Loosing secure connection when adding items to cart
Could this also be a warning message associated with a mix of secure and non-secure content on the same page? Ie, images that were incorrectly coded to include http:// at the start of the src="http:// statement?
These instead should be: src="//
Re: Loosing secure connection when adding items to cart
Quote:
Originally Posted by
mc12345678
These instead should be: src="//
Or src="https:// ... if referencing external sources.
Re: Loosing secure connection when adding items to cart
Quote:
Originally Posted by
frank18
Or src="https:// ... if referencing external sources.
No, with an otherwise full uri src="// will prepend the http or https of the current page preventing mixed content of the served page. The only issue lies in the content associated being able to be retrieved by the referenced server.
In keeping with ZC standards and flexibility, locally served content should be provided by reference and particularly should be provided by use of applicable ZC functions to retrieve the location particularly when URI rewriters are involved. This type of coding will significantly reduce troubleshooting if the site is transferred or duplicated elsewhere.
Re: Loosing secure connection when adding items to cart
Quote:
Originally Posted by
mc12345678
.... The only issue lies in the content associated being able to be retrieved by the referenced server....
And THAT is my point!
Re: Loosing secure connection when adding items to cart
Quote:
Originally Posted by
mc12345678
Could this also be a warning message associated with a mix of secure and non-secure content on the same page? Ie, images that were incorrectly coded to include http:// at the start of the src="http:// statement?
These instead should be: src="//
I haven't a clue as to what you mean.
Re: Loosing secure connection when adding items to cart
I called my host to find the SSL info and they said 'www.domain.com' rather than domain.com so I changed my config files accordingly. Still get the same message when I add items into the cart. I read somewhere that this was a common thing as the database wasn't held under the SSL but that doesn't make sense as you get warning messages which isn't good for business. What am I doing wrong?
Re: Loosing secure connection when adding items to cart
Perhaps could share the address to the site to be able to better identify what conditions exist at themoment of selecting to add theitem to the cart and what the result is.
Mystatements had to do with the content that you might see on either the "product"page or the shopping cart page,if you view source, then if the uri of the page is https:// and you find some particular uris in the source that are http:// that could cause the error message depending also on the browser, etc...
Providing guesses, though really to get to the rootof the problem we need more information.
Re: Loosing secure connection when adding items to cart