Modifying the <head> because SSL isn't working

[part-timer]

In the head all of the pages of the executed .php files there is a <base href> tag and then there are the links to the two .css files for the template.

Code:

<base href="http://muskegohitmen.com/proshop/" />

<link rel="stylesheet" type="text/css" href="includes/templates/zc_gloss_black/css/stylesheet.css" />
<link rel="stylesheet" type="text/css" media="print" href="includes/templates/zc_gloss_black/css/print_stylesheet.css" />
</head>

Does anyone know how I could modify the link to those .css files??

[Kim]

Why? Zen Cart is smart- if you need a different Stylesheet just load it into your template's css directory with a name that follows convention.

[part-timer]

Why? Zen Cart is smart- if you need a different Stylesheet just load it into your template's css directory with a name that follows convention.

My webhost uses a shared ssl which points zen cart through a different base URL than where the origonal instalation is located and .css is not rendered corrently using reletive path name. I need to change it to a static URL. Apparently, zen cart is not smart enough

[Kim]

Who is the host?

[part-timer]

It is bluehost.com

Who is the host?

[Kim]

A search for bluehost comes up with 27 threads, might want to check them and see if there are some hosting specific configurations that need to be made.

[part-timer]

other than purchasing a dedicated server and another ssl certificate....not really

so is there a way to change those links??

A search for bluehost comes up with 27 threads, might want to check them and see if there are some hosting specific configurations that need to be made.

[DrByte]

1. what is the shared-ssl URL they've given you ?

2. what are the contents of your /includes/configure.php file (without password)?

[part-timer]

https://secure.bluehost.com/~muskegoh/

Code:

<?php
/**
 *
 * @package Configuration Settings
 * @copyright Copyright 2003-2006 Zen Cart Development Team
 * @copyright Portions Copyright 2003 osCommerce
 * @license http://www.zen-cart.com/license/2_0.txt GNU Public License V2.0
 */


// Define the webserver and path parameters
  // HTTP_SERVER is your Main webserver: eg, http://www.yourdomain.com
  // HTTPS_SERVER is your Secure webserver: eg, https://www.yourdomain.com
  define('HTTP_SERVER', 'http://muskegohitmen.com');
  define('HTTPS_SERVER', 'https://secure.bluehost.com/~muskegoh');

  // Use secure webserver for checkout procedure?
  define('ENABLE_SSL', 'true');

// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
  // these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
  define('DIR_WS_CATALOG', '/proshop/');
  define('DIR_WS_HTTPS_CATALOG', '/proshop/');

  define('DIR_WS_IMAGES', 'images/');
  define('DIR_WS_INCLUDES', 'includes/');
  define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
  define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
  define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
  define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
  define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
  define('DIR_WS_TEMPLATES', DIR_WS_INCLUDES . 'templates/');

  define('DIR_WS_PHPBB', '/');

// * DIR_FS_* = Filesystem directories (local/physical)
  //the following path is a COMPLETE path to your Zen Cart files. eg: /var/www/vhost/accountname/public_html/store/
  define('DIR_FS_CATALOG', '/home/muskegoh/public_html/proshop/');

  define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
  define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');
  define('DIR_WS_UPLOADS', DIR_WS_IMAGES . 'uploads/');
  define('DIR_FS_UPLOADS', DIR_FS_CATALOG . DIR_WS_UPLOADS);
  define('DIR_FS_EMAIL_TEMPLATES', DIR_FS_CATALOG . 'email/');

// define our database connection
  define('DB_TYPE', 'mysql');
  define('DB_PREFIX', 'zen_');
  define('DB_SERVER', 'localhost');
  define('DB_SERVER_USERNAME', 'muskegoh_zc1');
  define('DB_SERVER_PASSWORD', '************');
  define('DB_DATABASE', 'muskegoh_zc1');
  define('USE_PCONNECT', 'false'); // use persistent connections?
  define('STORE_SESSIONS', 'db'); // use 'db' for best support, or '' for file-based storage

  // The next 2 "defines" are for SQL cache support.
  // For SQL_CACHE_METHOD, you can select from:  none, database, or file
  // If you choose "file", then you need to set the DIR_FS_SQL_CACHE to a directory where your apache 
  // or webserver user has write privileges (chmod 666 or 777). We recommend using the "cache" folder inside the Zen Cart folder
  // ie: /path/to/your/webspace/public_html/zen/cache   -- leave no trailing slash  
  define('SQL_CACHE_METHOD', 'database'); 
  define('DIR_FS_SQL_CACHE', '/home/muskegoh/public_html/proshop/cache');

?>

1. what is the shared-ssl URL they've given you ?

2. what are the contents of your /includes/configure.php file (without password)?

[DrByte]

You'll see that going to this address:
https://secure.bluehost.com/~muskegoh/proshop/index.php
... does bring up your site, but does not display the stylesheet.

However, View Source in the browser shows that the base href is correct:
https://secure.bluehost.com/~muskegoh/proshop/

However, it is blocking access to your stylesheet. ie, going directly to the stylesheet should display its contents. In your case, a 403 forbidden error appears.
https://secure.bluehost.com/~muskego...stylesheet.css

Further, going to your secure URL without specifying the /proshop/ folder also appears to block access to certain content, such as a flash object.
https://secure.bluehost.com/~muskegoh/

This suggests to me that bluehost hasn't properly configured the shared SSL, thus leaving you with many 403 and other problems.

And to top it all off, your shared SSL pages are INTENSELY slow.


What is their tech support telling you?



BTW ... the way you have your configure.php file set up ... is right. This works well for most correctly-configured servers, including shared SSL environments.



As an aside, it appears that your original post suggested that maybe you knew most of what I just stated, and were hoping to simply use a non-SSL URL for the base href, and thus get around the 403 errors. While that would work in principle, it will result in a problem ... all your pages will not be properly secured, there will be no padlock displayed to the customer, and their browser will likely give errors saying that parts of the content on the page are not secure. That would be counter-productive.
The solution is to get bluehost to resolve their misconfiguration problem ... or to buy yourself an SSL certificate (they're not that expensive anymore).