you need to set both your admin urls to ssl in the /(admin)/includes/configure.php that will take care of the session problem
you need to set both your admin urls to ssl in the /(admin)/includes/configure.php that will take care of the session problem
Zen cart PCI compliant Hosting
I ended up going to another hosting that had dedicated ssl so that took care of the log in problem but I am still getting a message in admin when I try to set up paypal pro saying
ALERT: For security reasons, Installation of this module is disabled until your Admin is configured for SSL.
I have ssl configured and working. I have Paypal Express Checkout set up. It says processing. I am in my admin at the https location but still unable to install payments pro
As the all the posts shown here before yours have said, you need to make a small edit to your YOUR_ADMIN/includes/configure.php file, and copy the HTTPS_SERVER definition into your HTTP_SERVER definition, so that both are the same.
ie:
define('HTTP_SERVER', 'https://www.example.com');
define('HTTPS_SERVER', 'https://www.example.com');
Don't do the same to your non-admin configure.php. This is only necessary on the admin side.
Is that clear yet?
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Thank you, that resolved the issue on my one site. On my other site I have a shared ssl, is it possible to use that I do I have to have a private ssl for it to work
Same principle applies for shared SSL. Copy the defined value from HTTPS_SERVER to HTTP_SERVER, in the admin configure.php file only.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
Thank you, that worked
Bookmarks