Secure webserver for checkout - not happening

**beyerg** · 9 Jan 2009, 11:17 PM

Hello,

Using ZC 1.3.8a in a new install

I looked this up in the FAQ "How do I enable SSL after I have installed Zen Cart?" and edited my /includes/configure.php as described. I also edited /admin/includes/configure.php to use https:// though I think that is irrelevent to checkout security.

I have confirmed that I can navigate to both http://mysite.com and https://mysite.com, order and checkout successfully.

Now I want to activate secure checkout ALWAYS, even when the customer starts at http://mysite.com

I edited configure.php like so:

define('HTTP_SERVER', 'http://mysite.com');
define('HTTPS_SERVER', 'https://mysite.com');

and ...

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');

I would have expected that when customer moves to the checkout step (checkout procedure??), they will automatically switch to https://mysite.com. But that does not happen....they continue to checkout on http://mysite.com, of course exposing their CC info.

Its pretty simple, it seems, to enable SSL checkout, only three lines to edit in the configure.php. Can someone tell me what I'm missing?

Thanks,

Greg

**kobra** · 10 Jan 2009, 03:56 AM

Show us where this is

**beyerg** · 10 Jan 2009, 04:06 AM

australianbakery-dev.dreamhosters.com

**kobra** · 10 Jan 2009, 04:19 AM

Tripple check that your new configure.php was actually uploaded as when "Login" is hovered over it does not indicate https:// as it should

On some you must delete the current one and upload the new then change the permissions via the account manager and not FTP

**beyerg** · 10 Jan 2009, 04:23 AM

Thanks, I'll check on that...

**beyerg** · 10 Jan 2009, 04:42 PM

kobra - that was the problem.

I was going back and forth so much TSing both configure.php's, I lost track. I discovered that though I had edited my /includes/configure.php on my workstation, and queued it up, it had not yet gone to the server.

<tsk> Why didn't ZC do what I want it to do instead of what the configure file tells it to do. Silly literal code!

Thanks for the sanity check and hovering over that login link is a good TS step that should be in the SSL FAQ, I think.

**kobra** · 10 Jan 2009, 05:47 PM

hovering over that login link is a good TS step that should be in the SSL FAQ

You can lead a horse to water...

I think a step is FTP to your server.....But we all get wrapped up at times

**beyerg** · 10 Jan 2009, 05:50 PM

Originally Posted by kobra

I think a step is FTP to your server

OK, OK, so kick me when I'm already feeling stooopid.

**kobra** · 10 Jan 2009, 05:57 PM

Originally Posted by KoBra

But we all get wrapped up at times

No inference intended....just that we all have problems at times and having 1,000's of eyes through this community volunteer supported forum is one of the great things.
Not kicking you but laughing with you

Thread: Secure webserver for checkout - not happening

Thread Tools

Search Thread

Display

Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Re: Secure webserver for checkout - not happening

Similar Threads

Downloads not happening at checkout and shipping error message

EZ pages not showing in secure checkout screens

Google Checkout not secure

Checkout pages not secure - SSL installed

How do I get the checkout button to go to httpS//www for secure checkout

Bookmarks

Bookmarks

Posting Permissions