Whoops! Your session has expired

[gizmo_girl]

I am using version 1.5.1 on my newest website: www.personalizedpetid.com

I just had a security certificate installed so I can begin accepting credit cards. I have the payment module properly configured (from what I can tell).

I wanted to test the shopping cart as a customer. I can browse through the categories and items just fine, but when I try to add an item to my shopping cart (as a new or not logged in customer), I receive this message:

"Whoops! Your session has expired.
If you were placing an order, please login and your shopping cart will be restored. You may then go back to the checkout and complete your final purchases.
If you had completed an order and wish to review it, please go to your My Account page to view your order."

So naturally, I tried to log in as an existing customer and this is the message I received when I tried to add an item to my shopping cart:
"Whoops! Sorry, but you are not allowed to perform the action requested.
You are still logged in to your account and may continue shopping. Please choose a destination from a menu."

Something is terribly wrong here...the site was working fine with just PayPal as the method of payment. Customers could add items to their cart without any issue. Since adding the SSL and the authorizenet payment methods, a customer can't even add an item to their cart...let alone actually get to the point of checking out.

Please advise on how to fix this!!

[kobra]

Have you reviewed the similar threads listed below?

[gizmo_girl]

I have read through them and can't seem to solve the problem.

I have cleared cache & cookies and restarted FF.
I have checked my configure files.
I have looked for a trailing / after the URL.
I have verified SSL is enabled.
It can't be the credit card slamming issue, as I can't even add an item to the cart, let alone try to checkout.

I cannot figure out what else to look for.

[lat9]

It looks like there's an issue in your /includes/configure.php file. If I try to go to www.personalizedpetid.com/index.php, I'm redirected to https://personalizedpetid.com/index.php. If I click on the login link, FireFox puts up the "untrusted connection" screen.

Step 1: Make sure that your SSL certificate was issued for personalizedpetid.com, not www.personalizedpetid.com -- they are not the same!

Step 2: Check your /includes/configure.php file. The top-most portion should look like the following (with the www. added, depending on whether or not your SSL certificate is based on the www) ... it looks like you might have https:// specified for the HTTP_SERVER define:

Code:

// Define the webserver and path parameters
  // HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
  // HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
  define('HTTP_SERVER', 'http://personalizedpetid.com');
  define('HTTPS_SERVER', 'https://personalizedpetid.com');

  // Use secure webserver for checkout procedure?
  define('ENABLE_SSL', 'true');

[frank18]

Calling personalizedpetid.com indeed is redirected to https://personalizedpetid.com/

No template loads here, I am getting just plain html

When I click on the lock in the address bar and click 'More Information' and then 'View Certificate' I get

Issued to Common Name (CN) kings-kreations.com

etc etc Go Daddy Secure Certification Authority

Three things I can suggest:

1. check your configure.php file(s)

2. move your site to a host other than GoDaddy

3. get a cert from any other issuer but GoDaddy

[gizmo_girl]

You are brilliant, thank you! It was as simple as removing the www from my configure file.

However, here's the last problem I have to resolve. The page seems to be displaying without any issues in FF, Chrome, and Safari (on iPhone).

But in IE, here is the warning message I get and the page is not displaying the same way it does in the other browsers:

[gizmo_girl]

I have just discovered more problems...

Trying to log in to my admin side I get this:
Not Found

The requested URL /personalizedpetid/admin_foldername/admin_foldername/login.php was not found on this server.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.

Why on earth is it doing this?!?!

What else am I supposed to check for in the configure file?

[frank18]

I have just discovered more problems... Trying to log in to my admin side I get this: Not Found The requested URL /personalizedpetid/admin_foldername/admin_foldername/login.php was not found on this server. Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. Why on earth is it doing this?!?! What else am I supposed to check for in the configure file?

Could it be the duplicated admin_foldername /personalizedpetid/admin_foldername/admin_foldername/ in your configure file?

[gizmo_girl]

Yes that was the problem not being able to log in on the admin side.

I still don't know what's going on with IE and why that warning message comes up.