Zen ID remains in URL if storefront is set to HTTPS

[welshop.com]

Just testing the new V1.5.6 prior to upgrade in the new year and noticed that the zenid remains in the url of the main site until I hit the backend login/checkout where it dissapears from URL.

In the previous version 1.5.1 I set the config file to https for both HTTP_SERVER & HTTPS_SERVER and it worked fine with zenID only appearing once. Changing the HTTP_SERVER to http means the ZenID only shows once - which is fine but then the site is not HTTPS.

Session settings are .
Session Directory /**************/cache
Cookie Domain True Info
Force Cookie Use False Info
Check SSL Session ID False Info
Check User Agent False Info
Check IP Address False Info
Prevent Spider Sessions True Info
Recreate Session True Info
IP to Host Conversion Status true Info
Use root path for cookie path False Info
Add period prefix to cookie domain True

Cache folder is set for full write permissions.

I also have rewrite rules in htaccess to push everything to HTPPS.

Any help would be appreciated.

Cheers
Brinley

[lat9]

Is the zc156 site installed in a subdirectory or in the root?

[welshop.com]

Root on a sub domain

[welshop.com]

Posted this before but made an error in the Thread title (my bad) so posting again.

If I set HTTP_SERVER in config file to http:// zenid appear once then disappears when navigating the site.

If I set HTTP_SERVER in config file to https:// zenid remains in url even after clicking multiple links and only disappears if I select the home link.

Session settings in Admin are as the default. No HTacces file on the server.
Database upgraded from 1.5.1 to 1.5.6a
PHP Version 5.6.39
HTTP Server: Apache
Database Engine: MySQL 10.1.37-MariaDB

Dont know if this is being caused by something localized to my settings or something in the new build.

Would be interested if anyone else has the same issue when running https site wide.

Cheers
Brinley

[lat9]

What's your configure.php file's setting for DIR_WS_CATALOG and DIR_WS_HTTPS_CATALOG? I'm just guessing that they're not '/'.

[welshop.com]

Just checked and they are - see below

Code:

/**
 * These DIR_WS_xxxx values refer to the name of any subdirectory in which your store is located.
 * These values get added to the HTTP_CATALOG_SERVER and HTTPS_CATALOG_SERVER values to form the complete URLs to your storefront.
 * They should always start and end with a slash ... ie: '/' or '/foldername/'
 */
define('DIR_WS_CATALOG', '/');
define('DIR_WS_HTTPS_CATALOG', '/');

[mc12345678]

Is the only change made to the includes/configure.php that HTTP_SERVER was modified to start with https:? What is the value for ENABLE_SSL?

[welshop.com]

Yeah! I selected SSL for storefront during install so 'HTTP_SERVER', is set to https://

and

Code:

define('ENABLE_SSL', 'true');

[welshop.com]

other settings

Code:

/**
 * This is an advanced setting to determine whether you want to cache SQL queries.
 * Options are 'none' (which is the default) and 'file' and 'database'.
 */
define('SQL_CACHE_METHOD', 'file');

/**
 * Reserved for future use
 */
define('SESSION_STORAGE', 'reserved for future use');

[lat9]

What are your settings for Configuration->Sessions?