https is not secured in web page, but secured in admin

[ussefad]

I cant figure out why the site thecutelittleshop.com is unsecured via https and secured when you access the admin.

I am using zencart v1.3.9h

includes/configure.php

define('HTTP_SERVER', 'http://www.thecutelittleshop.com');
define('HTTPS_SERVER', 'https://www.thecutelittleshop.com');

// Use secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');


admin/includes/configure.php

define('HTTP_SERVER', 'http://www.thecutelittleshop.com');
define('HTTPS_SERVER', 'https://www.thecutelittleshop.com');
define('HTTP_CATALOG_SERVER', 'http://www.thecutelittleshop.com');
define('HTTPS_CATALOG_SERVER', 'https://www.thecutelittleshop.com');

// Use secure webserver for catalog module and/or admin areas?
define('ENABLE_SSL_CATALOG', 'true');
define('ENABLE_SSL_ADMIN', 'true');


configuration | sessions
Cookie Domain True
Force Cookie Use False
Check SSL Session ID False
Check User Agent False
Check IP Address False
Prevent Spider Sessions True
Recreate Session True
IP to Host Conversion Status true
Use root path for cookie path False
Add period prefix to cookie domain True

Thank you for your help.

[DrByte]

Your admin login is secured just fine.

However, if you wish to have ALL your admin pages use your HTTPS address, then make a simple change to your admin/includes/configure.php:

define('HTTP_SERVER', 'https://www.thecutelittleshop.com');
define('HTTPS_SERVER', 'https://www.thecutelittleshop.com');

[ussefad]

Thank you for the fast reply. Yes the admin is fine, but https://www.thecutelittleshop.com shows an x on a grey lock and a line through https in red. It cant be the certificate since the admin portion is fine.

[DrByte]

Oh. That problem doesn't manifest on your login page. Just your storefront. And that's because of your youtube link pointing to http instead of https:

Code:

<embed src="http://www.youtube.com ....

Related tutorial: https://www.zen-cart.com/tutorials/i...hp?article=150