Results 1 to 4 of 4
  1. 18 Jul 2018, 07:35 PM #1
    greg5sb
    greg5sb is offline New Zenner
    Join Date
    Dec 2011
    Posts
    19
    Plugin Contributions
    0

    Default Updated HTTP_SERVER "https://*" and thought it would redirect all pages to https

    But it still serves the basic http site when I don't type https in the address bar. Is this correct? Do I need to setup the redirect in the .htaccess file?
    Reply With Quote Reply With Quote
  2. 18 Jul 2018, 08:25 PM #2
    DrByte's Avatar
    DrByte
    DrByte is offline Sensei
    Join Date
    Jan 2004
    Posts
    66,373
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Updated HTTP_SERVER "https://*" and thought it would redirect all pages to https

    Zen Cart simply responds to the incoming request. While setting HTTP_SERVER to an https URL is important, it's only while drawing the page contents that that takes effect.
    ie: the "clicks" the user does after hitting the site will all be https.


    So, yes, you'll need to do something in your server/hosting account to force https "on first hit" if it wasn't provided. Often that can be done via .htaccess
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
    Reply With Quote Reply With Quote
  3. 18 Jul 2018, 09:32 PM #3
    carlwhat's Avatar
    carlwhat
    carlwhat is online now Totally Zenned
    Join Date
    Nov 2005
    Location
    los angeles
    Posts
    2,692
    Plugin Contributions
    9

    Default Re: Updated HTTP_SERVER "https://*" and thought it would redirect all pages to https

    the redirect on the first hit, will, in the future be done from within ZC. you can copy the 3 new files, listed here:

    https://github.com/zencart/zencart/pull/1525/files

    and there is then no need for .htaccess redirects.

    best.
    author of square Webpay.
    mxWorks has premium plugins. donations: venmo or paypal accepted.
    premium consistent excellent support. available for hire.
    Reply With Quote Reply With Quote
  4. 19 Jul 2018, 06:26 PM #4
    greg5sb
    greg5sb is offline New Zenner
    Join Date
    Dec 2011
    Posts
    19
    Plugin Contributions
    0

    Default Re: Updated HTTP_SERVER "https://*" and thought it would redirect all pages to https

    Thanks for the info and replies DrByte and carlwhat. I'll copy those files.
    Reply With Quote Reply With Quote
 

 
« Previous Thread | Next Thread »

Similar Threads

  1. v151 Force checkout pages to redirect to HTTPS
    By jennibr in forum Managing Customers and Orders
    Replies: 5
    Last Post: 25 Feb 2014, 08:55 PM
  2. How to make "home" page show up as https?
    By bensmumma in forum General Questions
    Replies: 1
    Last Post: 17 Jun 2009, 02:24 PM
  3. SSL - use "www." or not? - https://examplesite.com or https://www.examplesite.com
    By JasonRocket in forum General Questions
    Replies: 4
    Last Post: 19 Feb 2009, 06:02 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR
Content and Graphics Copyright (c) 2003 - 2024 Zen Ventures, LLC - all rights reserved
Zen Cart® is a Registered Trademark of Zen Ventures, LLC