Session Expires after SecPay payment

**karim** · 15 Aug 2006, 03:47 PM

Hi,

Our shop allows customers to go all the way through the checkout process using the SecPay payment module BUT when Secpay returns to the Shop the following message appears:

Whoops! Your session has expired.

When the user clicks on Go To My Account link, the item purchased is still in the basket.

This problem appears to have started since we upgraded PHP to 5.0.4 (from 5.0.3)

Config:

Zencart Version is: 1.3.0.1

MySQL 4.1.15-standard

HTTP Server: Apache/2.0.53 (Fedora)

Server OS: Linux 2.6.12-1.1381_FC3smp

Our zencart config file:

define('HTTP_SERVER', 'http://www.adventuresportsholidays.com');
define('HTTPS_SERVER', 'https://www.adventuresportsholidays.com');

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'false');

// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
// these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
define('DIR_WS_CATALOG', '/shop/');
define('DIR_WS_HTTPS_CATALOG', '/shop/');

define('DIR_WS_IMAGES', 'images/');
define('DIR_WS_INCLUDES', 'includes/');
define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
define('DIR_WS_TEMPLATES', DIR_WS_INCLUDES . 'templates/');

define('DIR_WS_PHPBB', '/*******/user/htdocs/forum/');

// * DIR_FS_* = Filesystem directories (local/physical)
//the following path is a COMPLETE path to your Zen Cart files. eg: /var/www/vhost/accountname/public_html/store/
define('DIR_FS_CATALOG', '/*******/htdocs/shop/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');
define('DIR_WS_UPLOADS', DIR_WS_IMAGES . 'uploads/');
define('DIR_FS_UPLOADS', DIR_FS_CATALOG . DIR_WS_UPLOADS);
define('DIR_FS_EMAIL_TEMPLATES', DIR_FS_CATALOG . 'email/');

// define our database connection
define('DB_TYPE', 'mysql');
define('DB_PREFIX', '');
define('DB_SERVER', 'localhost'); // eg, localhost - should not be empty
define('DB_SERVER_USERNAME', '****');
define('DB_SERVER_PASSWORD', '****');
define('DB_DATABASE', 'shop');
define('USE_PCONNECT', 'false'); // use persistent connections?
define('STORE_SESSIONS', ''); // leave empty '' for default handler or set to 'db'

// The next 2 "defines" are for SQL cache support.
// For SQL_CACHE_METHOD, you can select from: none, database, or file
// If you choose "file", then you need to set the DIR_FS_SQL_CACHE to a directory where your apache
// or webserver user has write privileges (chmod 666 or 777). We recommend using the "cache" folder inside the Zen Cart folder
// ie: /path/to/your/webspace/public_html/zen/cache -- leave no trailing slash
define('SQL_CACHE_METHOD', 'none');
define('DIR_FS_SQL_CACHE', '*******/htdocs/shop/cache');

Can anyone help please?
Karim

**DrByte** · 15 Aug 2006, 10:24 PM

Using:
- PHP 5.x
- Zen Cart version lower than v1.3.0.2

I suggest you go to Admin->COnfiguration->Sessions->Recreate Session ... and turn it to false.

**karim** · 16 Aug 2006, 09:23 AM

Thanks Dr Byte,

I changed that setting and it didn't solve the problem.

Do you or anyone else have other suggestions please?

K

**Ajeh** · 18 Aug 2006, 01:57 PM

Try upgrading to v1.3.0.2 ...

Next, try storing sessions in the database by editing your configure.php files:

define('STORE_SESSIONS', 'db'); // leave empty '' for default handler or set to 'db'

Does your site use 1 or 2 directories to manage secure/non-secure?

If you checkout with Money Order does it complete normally?

**karim** · 20 Aug 2006, 03:19 PM

Hi,

Thanks for the advice:

I have upgraded to the latest version and set define('STORE_SESSIONS', 'db');

We are not using SSL on the site.

The problem still happens when placing orders using SecPay payments.

I installed the Money Order payment module and placed an order as you suggested. The session did not expire and the order was logged correctly with the Thank You! We Appreciate your Business! page appearing as expected.

Do you have any other suggestions please?

Thanks.

**karim** · 24 Aug 2006, 12:01 PM

I tried changing the sessions - recreate sessions setting to True on the admin pages and when I sign up as a new customer and buy something with secpay it works and the order is logged. But if I login with an existing account and try to buy something I get the same 'whoops sessions expired page' - but the payment goes through.

So it seems to keep the session if you sign up and pay but then forget it if you go back and pay with an existing account.

**karim** · 6 Sep 2006, 04:10 PM

Just to let everyone know this problem has been solved..... by rebuilding the server from scratch!

(We had to do this to get a raid mirror working)

So, it must have been something outside of Zencart that was causing the problem.

Thank's for all your suggestions.

Karim.