Connection Partially Encrypted - SSL Problem - Google Checkout installed

[Kim]

Suggest you do a search on the forum for Network Solutions - They have some very odd settings somewhere that prevent Zen Cart from properly detecting the HTTPS. You need a new host.

[Caveman]

I believe that Kim has the most logical answer to this problem. I've battled back and forth with the tech's at Net Sol all day today and they have blamed everyone and everything except themselves. They don't seem interested in even checking if the problem could be on their end. I'm going go one more round with them then cut my loses an move on to another hosting company if they won't take the problem seriously.

I'm more than willing to try any suggestions to solve this problem that anyone has to offer but it may very well be that ZenCart conflicts with the sales of Net Sol's eCommerce system and will never be resolved on their servers.

Thanks for the help thus far.

[Caveman]

Well, Net Sol finally got back to me with the final version of the help that they are offering. Here is their suggestion from the e-mail they sent me.

[FONT=Arial][FONT=Arial]Your images and stylesheets are linked using http: instead of https: due to the way Zen cart is creating the links in PHP.[/FONT][/FONT]
[FONT=Arial][FONT=Arial]By changing line 17 of your /htdocs/store/includes/configure.php file from: [/FONT][/FONT]
[FONT=Arial][FONT=Arial]define('HTTP_SERVER', 'http://www.anothergamestore.com');[/FONT][/FONT]
[FONT=Arial][FONT=Arial]to [/FONT][/FONT]
[FONT=Arial][FONT=Arial]define('HTTP_SERVER', 'https://www.anothergamestore.com');[/FONT][/FONT]
[FONT=Arial][FONT=Arial]all of your links become https: links. The page is then fully encrypted and is recognized as such by browsers. As Zen cart is a third party produce, we cannot provide support for it. You will need to contact the manufacturer for further information on how to set your cart to properly create encrypted pages.[/FONT][/FONT]

I did as they suggest and yes the encrypted pages are now fully encrypted. So is the rest of the site too, even the pages that aren't supposed to be encrypted. I guess that's the best that Net Sol can do.

[DrByte]

I did as they suggest and yes the encrypted pages are now fully encrypted. So is the rest of the site too, even the pages that aren't supposed to be encrypted. I guess that's the best that Net Sol can do.

Yes, that's the best that they (Network Solutions) can do.

[kobra]

Running the general catalog in https requires that each request be encrypted-decrypted adding to page load/rendering time for all pages and not the ideal situation for a graphic intense presentation.

[DonRichardsonNH]

Yes, that's the best that Network Solutions can do.

Hi Folks,
I do not think this is specific to Network Solutions alone. I am hosting stores on GearWorx and In Motion Hosting and am seeing the same situation.

While I agree that encrypting the entire site is not the most effecient way to do this, it seems to be the only way it will get around this problem for now.

Will the Zencart team look into this to see if there is another way through some additional configuration on teh next release?

[kobra]

While I agree that encrypting the entire site is not the most effecient way to do this, it seems to be the only way it will get around this problem for now.

Will the Zencart team look into this to see if there is another way through some additional configuration on teh next release?

I can assure you that this is server configuration related and NOT the Zen Cart code.

PM me for a list of sites that work as designed on servers that are configured correctly.

[sfatula]

I also see the same thing. If I read the posts right. For example, once logged in, on the main page (home), if I click on a manufacturer in that sidebox, I get a security warning from Firefox that the information I am sending is going over an unencrypted connection. If I type something in the search box and hit return, same thing.

I reviewed the code in tpl_search.php sidebox, and, sure enough, the draw form EXPLICITLY says NONSSL, meaning, guaranteed to get this behavior.

Perhaps this is slightly different than others are saying, but, this is not good! We do not want people to get those types of warnings, it scares people as 99% of them have no clue what it really means.

The same applies to other boxes, say manufacturers.

This IS a coding issue. At least for these examples.

So, I guess my question is why the code forces NONSSL and thus causes the warnings?

[kobra]

For example, once logged in, on the main page (home), if I click on a manufacturer in that sidebox, I get a security warning

Once logged in you should be back to http and therefore no warnings will be invoked.

[DrByte]

Hi Folks,
I do not think this is specific to Network Solutions alone. I am hosting stores on GearWorx and In Motion Hosting and am seeing the same situation.

While I agree that encrypting the entire site is not the most effecient way to do this, it seems to be the only way it will get around this problem for now.

Will the Zencart team look into this to see if there is another way through some additional configuration on teh next release?

Can you share a URL where this is happening?
What version of Zen Cart?
What addons/contributions are installed?