Re: Wrong Attributes on Order
I am quite sure we are not including any zenid= elements in our links. (For example, I don't believe I sent you one, correct?) We actually direct them to the login screen, and from there they need to select the correct registration item.
HTTPS is new to us, and although I make sure to start any link with https, some of my club mates may not be so careful. In fact, I specifically recall that one message on registering for this fun run was lacking the "s" on the http. Do you think that might be causing this?
Steve
Re: Wrong Attributes on Order
I would recommend you point people to the HTTP version of your links, and let Zen Cart flip them into https links when it needs to protect their session by using ssl, such as during login and checkout.
Re: Wrong Attributes on Order
So other than directing them to the http instead of https, I leave it to Zen to flip them to https as needed?
And if I am sending them to the login page as my link, still http?
Steve
Re: Wrong Attributes on Order
Hmmm ... I guess if you're sending them to your login page directly, then it's appropriate to use the https URL.
Even the login page will still use SSL when the customer submits the form, because the page is configured to use the SSL version of the address automatically for sending the details to the server.
So: short answer: either one is fine.
Just don't use https URLs if you're NOT pointing them to the login page. :)
(Because it's the switching to SSL during login that triggers much of the session hijacking protections.)
(Granted, if you're never publishing URLs with zenids in them then it's somewhat moot.)
Still very puzzled by the other symptoms discussed earlier though. :(
Re: Wrong Attributes on Order
Okay, thanks for the tips ...
Yes, the behaviour is bizarre ...
