Loosing secure connection when adding items to cart

[aloeycdv]

I just tried to edit my post but no go, must be my computer.

What I was trying to ask is this: why when I try to add in multiple products from the main page of a category I get an error message stating that we've lost the secure connection to the database while on the individual pages there isn't a problem and everything is ok. What makes these two ordering processes different?

Maybe you have to review your security settings...

[motherwestwind]

Maybe you have to review your security settings...

That's why I am here asking for help. Geez what a comment.

[dbltoe]

I think it's an excellent comment and what we have been trying to get you to do. In a PM, I requested a look at your config files and that was not forthcoming.

We CANNOT see into you .htaccess file in the root NOR can we see either configure.php file. One of those is probably the culprit.

If you will post those (WITHOUT all usernames and passwords - ******* instead) perhaps we can get you going. If you don't want the search engines to see the links, change them to yoursite.com. BUT, we need to see them.

Don't bite the hand that tries to help -- FEED the hand the info needed.

[motherwestwind]

I think it's an excellent comment and what we have been trying to get you to do. In a PM, I requested a look at your config files and that was not forthcoming.

We CANNOT see into you .htaccess file in the root NOR can we see either configure.php file. One of those is probably the culprit.

If you will post those (WITHOUT all usernames and passwords - ******* instead) perhaps we can get you going. If you don't want the search engines to see the links, change them to yoursite.com. BUT, we need to see them.

Don't bite the hand that tries to help -- FEED the hand the info needed.

Sorry it's been a frustrating time lately even the phone company got into it by cancelling my phone after 16 years, I apologize but it seemed to be a flippant comment.

Here is my .htaccess file:

RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://mysite.com/$1 [R=301,L]

(I see there is no www. could that be the problem?)

and my includes config file:
// Define the webserver and path parameters
// HTTP_SERVER is your Main webserver: eg-http://www.yourdomain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.yourdomain.com
define('HTTP_SERVER', 'http://www.mysite.com');
define('HTTPS_SERVER', 'https://www.mysite.com');

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');

and the admin includes config file:

WE RECOMMEND THAT YOU USE SSL PROTECTION FOR YOUR ENTIRE ADMIN:
* To do that, make sure you use a "https:" URL for BOTH the HTTP_SERVER and HTTPS_SERVER entries:
*/
define('HTTP_SERVER', 'https://www.mysite.com');
define('HTTPS_SERVER', 'https://www.mysite.com');
define('HTTP_CATALOG_SERVER', 'http://www.mysite.com');
define('HTTPS_CATALOG_SERVER', 'https://www.mysite.com');

// secure webserver for admin? Valid choices are 'true' or 'false' (including quotes).
define('ENABLE_SSL_ADMIN', 'true');

// secure webserver for storefront? Valid choices are 'true' or 'false' (including quotes).
define('ENABLE_SSL_CATALOG', 'true')

[motherwestwind]

I just changed the SSL info to read https://www.mysite.com but I still received the error message when I tried to add items into the cart from the catalog page so I tested it. Turns out NOTHING is added into the cart so is this then a template issue and not a security issue?

I am sorry if my frustration at all of this mess lately has spilled out onto you kind people who are here to help, I do apologize.

[mc12345678]

I just changed the SSL info to read https://www.mysite.com but I still received the error message when I tried to add items into the cart from the catalog page so I tested it. Turns out NOTHING is added into the cart so is this then a template issue and not a security issue?

I am sorry if my frustration at all of this mess lately has spilled out onto you kind people who are here to help, I do apologize.

If all works well when using the unmodified ZC default template, but not with the currently installed template, the answer would be yes it's a template related issue. At least related to the files in the template override directories throughout the system.

[motherwestwind]

It is the template ... great ... all that time trusting the designer and here it was the template all along. Thank you for that suggestion, am off to find another that's more reliable.

[mc12345678]

It is the template ... great ... all that time trusting the designer and here it was the template all along. Thank you for that suggestion, am off to find another that's more reliable.

Well, I wouldn't necessarily say that the template needs to be ditched, if you compare the current template's file to the equivalent default template, there may be something missing to work with your version of ZC. Template may have been designed to an earlier version and may not have the latest added "features"... That is if you like the look, but it's not operating quite right...

If it was paid for, well should be able to go back to the individual. If free, well even the best templates offered here on ZC by one of the best template authors has a problem here and there, but that is usually covered in the forum applicable to the template. Anyways, just saying that there is always a possibility of a problem/mistake, but should be something easily worked through generally speaking. There are some template sources not on this site that are known to have issues and tend not to work fully with ZC contrary to the advertising.

Glad you figured it out though.

[motherwestwind]

Well, I wouldn't necessarily say that the template needs to be ditched, if you compare the current template's file to the equivalent default template, there may be something missing to work with your version of ZC. Template may have been designed to an earlier version and may not have the latest added "features"... That is if you like the look, but it's not operating quite right...

Good thought, thank you I will do that. I think the main difficulty has been my jumping into the world of responsive design without understanding the complexity of the programming involved that had to uninstalled rather than just deleted. I am used to 1.39 where you could switch back and forth between templates with ease. There may still be something lurking from quitting the responsive design template and trying to get back to legacy. I'll start over with this template in a different folder and see if that was the issue, otherwise it might be a corrupted patch to the database. Meanwhile I'm working with a familiar template which served me well. My fault for trying to get fancied up.

[RixStix]

Are you losing the secure connection or are you getting a mixed content warning?

I was getting a mixed content warning and found a hardcoded link to

Code:

<script src="http://cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js" type="text/javascript"></script>

which was fixed with a suggestion from mc12345678 to just remove the http: reference

Code:

<script src="//cdnjs.cloudflare.com/ajax/libs/jquery-easing/1.3/jquery.easing.min.js" type="text/javascript"></script>

Could your issue could be something similar?