Configure.php with SSL Shared

[rayw1679]

New installation of 1.5 -- after I try to sign-in, I get a "page not found" because the URL has the domain name in it twice. I have tried removing it, but then I get no domain name at all. Thanks for your help.

admin/includes/configure.php:
define('HTTP_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTPS_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');
define('HTTP_CATALOG_SERVER', 'http://michellegibson.net');
define('HTTPS_CATALOG_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');

URL requested after login:
https://ssl.perfora.net/rdswebs.net/michellegibson.net/ ...
michellegibson.net/store/adminXXX/index.php

[RodG]

define('HTTP_SERVER', 'https://ssl.perfora.net/rdswebs.net');

define('HTTPS_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');

define('HTTPS_CATALOG_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');

None of those are valid server names.

define('HTTP_CATALOG_SERVER', 'http://michellegibson.net');

That is what a valid server name should look like.

Notice the difference? A valid serve rname consists of
http:// (or https://) followed by a name. then a dot, then a suffix (com, net, org, etc) and NOTHING MORE.

The stuff that you have following this, namely /rdswebs.net, etc are paths to the files on the server and as such need to be placed in the path settings of the configuration file(s).

Cheers
Rod

[rayw1679]

RodG -- Thank you so much for responding.

I copied those names from another copy of the store I am running on 1.3.8a. It works fine there.

I can go into the "store" side and sign-in and create an ID with no problem. I can go into "admin" and get to the sign-on screen. After that is when I get the duplicate domain name in the URL, which obviously results in a "page not found."

sss.perfora.net is the shared certificate of my host, 1and1. rdswebs.net is the name of my server.

In the future, I'll probably go to a designated SSL certificate; however, this is a "trial project" for my daughter and the certificate would cost more than she may make from the store.

I changed it to this:
define('HTTP_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTPS_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTP_CATALOG_SERVER', 'http://michellegibson.net');
define('HTTPS_CATALOG_SERVER', 'https://michellegibson.net');
and I can't even get to the admin sign-on screen (instead of two "michellegibson.net" in the domain, there is none).

I'm sorry if I'm not understanding you, but I'm very confused.

[rayw1679]

Typically, I've received extremely fast resolutions from this forum (most often from Ajeh). I can only assume I've committed one of the following mistakes:
(1) I don't understand the answer. That's possibe; I'm now disabled and on multiple prescription painkillers, so I often misunderstand. If that's the case, please bear with me; you may be in the same situation someday (although I hope not).
(2) Everyone thinks I should use a private SSL certificate. I may do so in the future, but I promise the instructions say shared certificates work (and I'm using same on my Reliable Go-Karts store on an earlier release), so I didn't see any reason to waste the money. I'd rather send the money to Zen Ventures, LLC (see # 3).
(3) I've upset people by not buying the ZenCart team a cup of coffee. Guilty, no excuse. My check (Reliable Go-Karts) is in the mail. I'm sending $100, and it won't be my last.

[RodG]

Typically, I've received extremely fast resolutions from this forum (most often from Ajeh). I can only assume I've committed one of the following mistakes.

Possibly #1, but not #2, and certainly not#3

Could you post a copy of your config file (blank out the sensitive DB information).

There have been a number of changes in this file with V1.5 release and this may be the easiest way to sort it out.

It'll help other spot the problem too.

Cheers
Rod

[rayw1679]

This is the latest copy, per your recommended change. Thank you very much for helping.

<?php
/**
* @package Configuration Settings circa 1.5.0
* @copyright Copyright 2003-2011 Zen Cart Development Team
* @copyright Portions Copyright 2003 osCommerce
* @license http://www.zen-cart.com/license/2_0.txt GNU Public License V2.0
* File Built by zc_install on 2012-03-10 01:10:53
*/


/*************** NOTE: This file is similar, but DIFFERENT from the "store" version of configure.php. ***********/
/*************** The 2 files should be kept separate and not used to overwrite each other. ***********/

/**
* WE RECOMMEND THAT YOU USE SSL PROTECTION FOR YOUR ENTIRE ADMIN:
* To do that, make sure you use a "https:" URL for BOTH the HTTP_SERVER and HTTPS_SERVER entries:
*/
define('HTTP_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTPS_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTP_CATALOG_SERVER', 'http://michellegibson.net');
define('HTTPS_CATALOG_SERVER', 'https://michellegibson.net');

// secure webserver for admin? Valid choices are 'true' or 'false' (including quotes).
define('ENABLE_SSL_ADMIN', 'true');

// secure webserver for storefront? Valid choices are 'true' or 'false' (including quotes).
define('ENABLE_SSL_CATALOG', 'true');

// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
// these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
$t1 = parse_url(HTTP_SERVER);$p1 = $t1['path'];$t2 = parse_url(HTTPS_SERVER);$p2 = $t2['path'];

define('DIR_WS_ADMIN', preg_replace('#^' . str_replace('-', '\-', $p1) . '#', '', dirname($_SERVER['SCRIPT_NAME'])) . '/');
define('DIR_WS_CATALOG', '/store/');
define('DIR_WS_HTTPS_ADMIN', preg_replace('#^' . str_replace('-', '\-', $p2) . '#', '', dirname($_SERVER['SCRIPT_NAME'])) . '/');
define('DIR_WS_HTTPS_CATALOG', '/store/');

define('DIR_WS_IMAGES', 'images/');
define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
define('DIR_WS_CATALOG_IMAGES', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'images/');
define('DIR_WS_CATALOG_TEMPLATE', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'includes/templates/');
define('DIR_WS_INCLUDES', 'includes/');
define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
define('DIR_WS_CATALOG_LANGUAGES', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'includes/languages/');

// * DIR_FS_* = Filesystem directories (local/physical)
define('DIR_FS_ADMIN', realpath(dirname(__FILE__) . '/../') . '/');
//the following path is a COMPLETE path to your Zen Cart files. eg: /var/www/vhost/accountname/public_html/store/
define('DIR_FS_CATALOG', '/homepages/5/d232125156/htdocs/michellegibson.net/store/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
define('DIR_FS_CATALOG_TEMPLATES', DIR_FS_CATALOG . 'includes/templates/');
define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');
define('DIR_FS_EMAIL_TEMPLATES', DIR_FS_CATALOG . 'email/');
define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

// define our database connection
define('DB_TYPE', 'mysql');
define('DB_PREFIX', '');
define('DB_CHARSET', 'utf8');
define('DB_SERVER', 'localhost:/tmp/mysql5.sock');
define('DB_SERVER_USERNAME', 'dboxxxxxxxxx');
define('DB_SERVER_PASSWORD', 'xxxxxxxxx');
define('DB_DATABASE', 'dbxxxxxxxxx');

// The next 2 "defines" are for SQL cache support.
// For SQL_CACHE_METHOD, you can select from: none, database, or file
// If you choose "file", then you need to set the DIR_FS_SQL_CACHE to a directory where your apache
// or webserver user has write privileges (chmod 666 or 777). We recommend using the "cache" folder inside the Zen Cart folder
// ie: /path/to/your/webspace/public_html/zen/cache -- leave no trailing slash
define('SQL_CACHE_METHOD', 'database');
define('DIR_FS_SQL_CACHE', '/homepages/5/d232125156/htdocs/michellegibson.net/store/cache');


// Define the webserver and path parameters
// Main webserver: eg-http://www.your_domain.com -
// HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
// HTTP_CATALOG_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_CATALOG_SERVER is your Secure webserver: eg-https://www.your_domain.com
/*
* URLs for your site will be built via:
* HTTP_SERVER plus DIR_WS_ADMIN or
* HTTPS_SERVER plus DIR_WS_HTTPS_ADMIN or
* HTTP_SERVER plus DIR_WS_CATALOG or
* HTTPS_SERVER plus DIR_WS_HTTPS_CATALOG
* ...depending on your system configuration settings
*/
// EOF

[rayw1679]

It wasn't # 3, as I sent my check for $100, but I still don't have an answer. I checked into SSL, but my server is only allowed one, and I have several stores running on it. I finally installed 1.3.9 instead, which works fine, but I'm going to be in trouble when I have to upgrade.

[rayw1679]

My server (1and1) is dropping PHP < 5.4, and 1.3.8a apparently (from what I've read) won't run on 5.4. I haven't been able to install 1.5 due to the shared SSL issue (see post #1). I hate to sound impatient, but time is now a crucial factor, as I have to resolve this or find another online store.

Am I correct in assuming 1.3.8a will not run on PHP 5.4?

How crucial is SSL for the store?

Do releases 1.5 and up still split the credit card info and allow us to enter them manually?

Will there ever be a resolution to this problem I have reported?

If I upset anyone, I sincerely apologize.

[DrByte]

My server (1and1) is dropping PHP < 5.4, and 1.3.8a apparently (from what I've read) won't run on 5.4.

Correct. v1.3.8 was written before PHP 5.4 was even conceived, and is not compatible with it.

I haven't been able to install 1.5 due to the shared SSL issue (see post #1).

It really looks like a simple configuration error.

How crucial is SSL for the store?

If you're accepting credit cards directly on your site, then SSL is more than critical.
Dedicated SSL is even better. But you've already discussed that, so I'm not going to pressure you to go there; I'll simply remind you that customers "accept" it better when the URL matches the name of the store's domain they're visiting.
And as you mentioned earlier, yes Zen Cart usually works fine in a shared-SSL environment provided your configure.php files contain the correct information.

Do releases 1.5 and up still split the credit card info and allow us to enter them manually?

Not as a built-in feature, no. That's a huge PCI no-no. However, there is an addon available which adds some encryption around that process, making it a possibly viable choice, which many have chosen to use happily.

Will there ever be a resolution to this problem I have reported?

Should be already. Sorry that your post fell through the cracks.
That said, there ARE some hosting environments where Shared SSL does NOT work with Zen Cart, simply because of how the hosting company has architected their server farm and how their shared certificates are configured. This is a hosting limitation, and not a Zen Cart limitation. It's unclear yet whether you're a victim of an incompatible host in that regard.

If I upset anyone, I sincerely apologize.

No need to apologize. I don't see where you've upset anyone.

[DrByte]

New installation of 1.5 -- after I try to sign-in, I get a "page not found" because the URL has the domain name in it twice. I have tried removing it, but then I get no domain name at all. Thanks for your help.

admin/includes/configure.php:
define('HTTP_SERVER', 'https://ssl.perfora.net/rdswebs.net');
define('HTTPS_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');
define('HTTP_CATALOG_SERVER', 'http://michellegibson.net');
define('HTTPS_CATALOG_SERVER', 'https://ssl.perfora.net/rdswebs.net/michellegibson.net');

URL requested after login:
https://ssl.perfora.net/rdswebs.net/michellegibson.net/ ...
michellegibson.net/store/adminXXX/index.php

I'm not clear whether this is intentionally isolated to discussion about your Admin only, or if the problem supposedly affects your storefront as well.

I know you posted some admin configure.php contents earlier, for your 1.5 test site. But can I ask you to post BOTH of your configure.php files for you v1.3.8 site, since you say they're working without problem right now in your shared SSL environment. This would be critical information in order to help you. Of course please blank out the database username/pwd when posting.