user gets kicked off between ssl and non ssl

Hi,

v. 1.3.9H
tesoreriabahai dot org

I installed SSL, and I can access the site fine, and when go to login page it is https, I do login fine, but when clicking on a not secure page, i.e. catalog I get kicked off, and if I click on login button I get back in w/o having to fill the email, and password.
Basically I cannot use the site.

Same is in the admin area the login page is https, I login fine, but when I try to get to any page, be it tools, catalog, configuration, or else, I get kicked off, and this time clicking login doesn't let me back in.

I have cleared cache, and cookies, but no luck.

Thank you

Quote:

---

I installed SSL, and I can access the site fine, and when go to login page it is https, I do login fine, but when clicking on a not secure page, i.e. catalog I get kicked off

---

If by "kicked off" you mean back to http versus https then that is correct

Zencart only uses https for pages that require it

Thanks for the reply kobra.
Sorry I haven't been clear; no I mean that when I try to go to pages that are supposed to be http, the user appears not to be logged in again, he gets logged-off, though half way; and in the admin area, though being it all https I get logged off whichever link I click.

I set back the config files with the https disabled, I made a test user for you to see, but when I tested it, it appears to work as the user stays logged, but another issue came up:
I now have two users, and while making a test with the newly added user it seems the cart of one user is diplayed for the other user, mostly it appears they share the same cart, as when I emptied one of the carts, the other one too shows empty, when I add a new item to one cart, the older cart seems to be overwritten. - by older cart I mean that of the other user.

Test user is keneso at gmail dot com
psw 123456

Having a language issue with me,

Is this a fresh install or an upgrade??

Quote:

---

but another issue came up

---

Check your links or the links elsewhere that could be used to get to your site, they can not have any "zenid" attached

I will set the language to english as well, sorry for that.

Yes fresh install, with the only mod being the sidebox login, and the setting for user to be approved before being able to add items to cart.

This is very wierd, I was using FF till now, right now I tried chrome, and the problem of being logged-out came back!!

Please give me few minutes to disable https, and add English (as I can't access the admin sections like said)

Ok, I've set the language, you find it at bottom of sidebar.

I added another test user
farzin95 at hotmail.com
999999

I created an admin, if you think is safe I can pm you

Ok, I think I found the culprit, can you please confirm my finding:

In the config files i noticed I had

admin/includes

PHP Code:

---

  define('DIR_WS_ADMIN', '/safe_admin/');
  define('DIR_WS_CATALOG', '/');
  define('DIR_WS_HTTPS_ADMIN', '/~username/safe_admin/');
  define('DIR_WS_HTTPS_CATALOG', '/'~username/); 


---

and includes

PHP Code:

---

  define('DIR_WS_CATALOG', '/');
  define('DIR_WS_HTTPS_CATALOG', '/~username/'); 


---

I deleted ~username, and it seems to be working fine.

Only you might know where "~username" might have come from????
Glad it is sorted

Thanks kobra ... I meant if you can confirm that the correct setting of the config files is like below, which you basically have with your question.

As to answer your question, I suspect it was added while installing the SSL, as for sure I did not added it.

define('DIR_WS_ADMIN', '/safe_admin/');
define('DIR_WS_CATALOG', '/');
define('DIR_WS_HTTPS_ADMIN', '/safe_admin/');
define('DIR_WS_HTTPS_CATALOG', '/');

define('DIR_WS_CATALOG', '/');
define('DIR_WS_HTTPS_CATALOG', '/');

If your shop is at the web root those look correct