I am new to Zencart and have recently installed on a self-hosted server. My website uses a CA issued certificate and I have Apache configured to ONLY serve secure pages (https). The new installation works very nicely and I am very pleased with this ecommerce product. However, I have a problem with the function of the Admin Tools. For example, when I attempt to make any changes via Admin Tools, my browser client gives a pop-up warning:Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.
Are you sure you want to continue sending this information?
Presumably, at this point Apache is being asked by a script to serve a non-secure page. If I ignore the warning, the attempted change fails. How might I go about correcting this? (I have complete control of the server.) Here are some details about my system:
Zen Cart 1.3.8a
Database Patch Level: 1.3.8
PHP Version 5.2.6-3ubuntu4.2
System Linux black 2.6.28-15-server #49-Ubuntu SMP Tue Aug 18 20:09:37 UTC 2009 x86_64
Build Date Aug 21 2009 21:20:43
Server API Apache 2.0 Handler
Virtual Directory Support disabled
Configuration File (php.ini) Path /etc/php5/apache2
Loaded Configuration File /etc/php5/apache2/php.ini
Scan this dir for additional .ini files /etc/php5/apache2/conf.d
additional .ini files parsed /etc/php5/apache2/conf.d/curl.ini, /etc/php5/apache2/conf.d/gd.ini, /etc/php5/apache2/conf.d/mcrypt.ini, /etc/php5/apache2/conf.d/mysql.ini, /etc/php5/apache2/conf.d/mysqli.ini, /etc/php5/apache2/conf.d/pdo.ini, /etc/php5/apache2/conf.d/pdo_mysql.ini
PHP API 20041225
PHP Extension 20060613
Zend Extension 220060519
Debug Build no
Thread Safety disabled
Zend Memory Manager enabled
IPv6 Support enabled
Registered PHP Streams zip, php, file, data, http, ftp, compress.bzip2, compress.zlib, https, ftps
Registered Stream Socket Transports tcp, udp, unix, udg, ssl, sslv3, sslv2, tls
Registered Stream Filters string.rot13, string.toupper, string.tolower, string.strip_tags, convert.*, consumed, convert.iconv.*, bzip2.*, zlib.*
Suhosin logo This server is protected with the Suhosin Patch 0.9.6.2
Copyright (c) 2006 Hardened-PHP Project
Bookmarks