What if we want to secure the entire zencart site including products, admin etc other than just (login and checkout )? Does Zen Cart provide this ? e.g. not to switch between http and https, just https all the way.
What if we want to secure the entire zencart site including products, admin etc other than just (login and checkout )? Does Zen Cart provide this ? e.g. not to switch between http and https, just https all the way.
Last edited by kkfok1; 5 Sep 2010 at 09:09 AM.
If you need to, yes.
Why do you feel that you need your entire storefront to be https?
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Bear in mind that your site will be much slower to load due to continuous encryption of transmitted information.
ZC automatically switches between http and https when required provided it is configured the right way - so there is nothing to worry.
Having the whole admin part on https can be useful though. After all, it does not affect the download speed available to the general public.
Appreciate responses and advises, but I still don't get the way to do this, can someone please help by sharing step-by-step guide.
Thank you in advance.
You didn't answer my question.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Follow this guide https://www.zen-cart.com/tutorials/index.php?article=14
Setting the HTTP_SERVER to an https url will get you what you want.
What ever your reasons maybe.