Forums / General Questions / Secure and Nonsecure items

Secure and Nonsecure items

Locked
Results 1 to 20 of 60
This thread is locked. New replies are disabled.
08 Dec 2008, 21:58
#1
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Secure and Nonsecure items

Please help!!!! Anyone????

Here is what the owner of the site is saying:

I figured out why nobody is buying, the pop up that says "this site has sucure and nonsucure items, some poeple have been emailing me saying that they dont want to buy because they are afraid to put in their account numbers. we gota fix this! can we get rid of the pop up? how do we do this? i need business." HELP

Does anyone know what I can do to fix this? I have seen it before?? Do I need to contact the SSL people or am I missing something in the admin?

I have visited other examples of some great carts made with Zencart and they don't seem to have this problem.

Thanks!

Happy Holidays Everyone!!
08 Dec 2008, 22:00
#2
kim avatar

kim

Obaa-san

Join Date:
Jun 2003
Posts:
26,564
Plugin Contributions:
0

Re: Secure and Nonsecure items

Your URL?
08 Dec 2008, 22:35
#4
kim avatar

kim

Obaa-san

Join Date:
Jun 2003
Posts:
26,564
Plugin Contributions:
0

Re: Secure and Nonsecure items

Looks like you have a problem with your SSL certificate:
Secure Connection Failed

www.blackflameclothing.com uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.

(Error code: sec_error_unknown_issuer)

* This could be a problem with the server's configuration, or it could be someone trying to impersonate the server.
* If you have connected to this server successfully in the past, the error may be temporary, and you can try again later.
Or you can add an exception…
13 Dec 2008, 22:14
#5
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Thanks Kim and to everyone that looked into this problem. The hosting people said they would look into it! But I do have a tech question that I haven't seen before and I am wondering if I did something wrong?

When I go the the catalog: https://www.blackflameclothing.com/catalog/

I get the https and the www

But when I click on one of the products it goes to:
http://blackflameclothing.com/catalog/index.php?main_page=product_info&cPath=66&products_id=182

The www and the https goes away?

Did I do something wrong in zencart? Or is this still a SSL problem?

thanks everyone!
14 Dec 2008, 00:12
#6
anna718 avatar

anna718

New Zenner

Join Date:
Dec 2008
Posts:
35
Plugin Contributions:
0

Re: Secure and Nonsecure items

Regrading your http & https confusion, their is no need for the security until the checkout stage, so products would normally list in a non secure environment. Once the checkout is reached, it does switch to the secure https server, but the unrecognised certificate notice pops up. And, yes, that would definitely be a real turn off for potential buyers.
14 Dec 2008, 07:00
#7
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Thanks Anna!

Actually this is what the engineers at my hosting said:

The register.com ssl cert you provided is on the server and it is correctly installed. We are able to launch the other pages in https with the padlock in the browser. In the merchandise section, you do not have the padlock. Your site is serving mixed content from the code. We do know the links on the page reference the direct url starting with http:// and not https://. The base url is also pointing to an http:// url. You will need to review the code in your site to make sure that the code is not breaking certificate. If the problem still persists, then please let us know.

WHAT CODE ARE THEY TALKING ABOUT???
14 Dec 2008, 07:42
#8
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

So what can I do to stop the annoying: This page displays both secure and nonsecure items.

Do you want to display the nonsecure items? Yes or no

Can anyone help??????
14 Dec 2008, 07:42
#9
canopy avatar

canopy

Totally Zenned

Join Date:
Oct 2006
Posts:
625
Plugin Contributions:
0

Re: Secure and Nonsecure items

You may want to try this.

Go to your 2 x configure.php files and change the following lines from:

[php]define('HTTP_SERVER', 'http://blackflameclothing.com');
define('HTTPS_SERVER', 'https://blackflameclothing.com');
[/php]to:

[php]define('HTTP_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');[/php]
14 Dec 2008, 17:13
#10
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

canopy:

You may want to try this.

Go to your 2 x configure.php files and change the following lines from:

[php]define('HTTP_SERVER', 'http://blackflameclothing.com');
define('HTTPS_SERVER', 'https://blackflameclothing.com');
[/php]to:

[php]define('HTTP_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');[/php]


Already did that when I turned add the ssl.

Thanks
14 Dec 2008, 18:28
#11
ajeh avatar

ajeh

Oba-san

Join Date:
Sep 2003
Posts:
62,757
Plugin Contributions:
1

Re: Secure and Nonsecure items

Check your two configure.php files on the server to see what you have defined for the URLs ...

If your files on the server still are not using the www then what is happening is your files on the server are probably set to 444 and when you try to load your files and overwrite them with the new files, they are not getting overwritten as the permission settings are stopping them from being overwritten with the new files ...

If this is the case, either change the permissions of the files to 644 so you can overwrite them and then back to 444 ... or delete the files on the server and load your new files with the proper settings ...

NOTE: one other possibilty is that you have two locations for all of your files and you have only updated one of them ...
14 Dec 2008, 22:09
#12
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Ok this is what I have on the catalog/includes/configure.php:

// Define the webserver and path parameters
// HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
define('HTTP_SERVER', 'http://blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');


and this is what I have on the catalog/admin/includes/configure.php:

define('HTTP_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');
define('HTTP_CATALOG_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_CATALOG_SERVER', 'https://www.blackflameclothing.com');

// Use secure webserver for catalog module and/or admin areas?
define('ENABLE_SSL_CATALOG', 'True');
define('ENABLE_SSL_ADMIN', 'True');
14 Dec 2008, 22:45
#13
tophand avatar

tophand

Totally Zenned

Join Date:
Jan 2007
Posts:
674
Plugin Contributions:
0

Re: Secure and Nonsecure items

Rickmann08:

Ok this is what I have on the catalog/includes/configure.php:

// Define the webserver and path parameters
// HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
// HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
define('HTTP_SERVER', 'http://blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');


and this is what I have on the catalog/admin/includes/configure.php:

define('HTTP_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_SERVER', 'https://www.blackflameclothing.com');
define('HTTP_CATALOG_SERVER', 'http://www.blackflameclothing.com');
define('HTTPS_CATALOG_SERVER', 'https://www.blackflameclothing.com');

// Use secure webserver for catalog module and/or admin areas?
define('ENABLE_SSL_CATALOG', 'True');
define('ENABLE_SSL_ADMIN', 'True');


Missing the www
16 Dec 2008, 06:27
#14
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Thanks tophand! I can't beleive I missed that!
16 Dec 2008, 06:42
#15
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Ok, I think I posted this incorrectly the other so I figured I would repost it with what I have now learned.

So when you go to my sites catalog I receive the SECURE and NONSECURE pop up asking me if want to isplay the nonsecure items. I have come to figure out that its because of my images.

I think!

So I have started to point most of my images to a secure link but I can't figure out how to make my product images secure?

Can anyone help?
16 Dec 2008, 06:52
#16
misty avatar

misty

Inactive

Join Date:
Apr 2004
Posts:
5,752
Plugin Contributions:
1

Re: Secure and Nonsecure items

Working in the dark is difficult..
Link to site in question is???
16 Dec 2008, 07:10
#18
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

oops I forgot about the nonsecure question I asked at the beginning of that thread. But actually I don't think anyone told me what I need to do about the secure/nonsecure message.

I know I have to link up everything as secure which is what I am doing but I am still having a problem!!!

btw the site is https://www.blackflameclothing.com/catalog
16 Dec 2008, 11:39
#19
stevesh avatar

stevesh

Black Belt

Join Date:
Feb 2005
Posts:
19,793
Plugin Contributions:
2

Re: Secure and Nonsecure items

I think you got good advice in your other thread.

Your entire site doesn't need to be secured under SSL, and doing so can cause problems. Why not just edit your configure.php files properly and let Zencart decide which areas should be secured? That will certainly take care of the secure/non-secure problem you're experiencing now.
17 Dec 2008, 03:18
#20
rickmann08 avatar

rickmann08

New Zenner

Join Date:
Oct 2008
Posts:
56
Plugin Contributions:
0

Re: Secure and Nonsecure items

Yeah stevesh you are correct (actually I have had a lot of great feedback). Actually I don't want the whole site to be secure. I just want that DAMN pop-up to go away!

I have followed everyones instructions (at least that I know of) in the configure.php but that DAMN pop-up just won't go away!!!

Plus I have the owner calling me like every 30 minutes asking "Did you fix it yet" I keep telling him no! Because I am a designer not a programmer!

Sorry for all the yelling everyone! This security thing is killing me!