.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
If this was not one of the expensive ones, and I hope it was not...You can obtain another and possibly have it issued to the www. domain url also
Zen-Venom Get Bitten
Doing this appears to have cured the problems:
it appears to be working now, can anyone see any problems with having done the above? A guy on www.dropshipforum.co.uk told me to try it but says he's only learning about Zen but thought it should work.Comment out the original lines (use // in front of them) and add the following underneath:
$request_type = (getenv('HTTP_X_FORWARDED_HOST') == 'secure.gothicmagic.co.uk') ? 'SSL' : 'NONSSL';
The files and lines are:
admin\includes\init_includes\init_file_db_names.php Line 20
includes\init_includes\init_file_db_names.php Line 18
includes\modules\payment\paypal\ipn_application_top.php Line 46
I think that's them all. Basically we need to set the variable $request_type to either SSL or NOSSL appropriately.
Does it work also if you change that line to this instead:[FONT="Courier New"]$request_type = ((isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on') || (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == '1') || (isset($_SERVER['HTTP_X_FORWARDED_BY']) && strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_BY']),'SSL')) || (isset($_SERVER['HTTP_X_FORWARDED_HOST']) && (strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_HOST']),'SSL') || strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_HOST']),str_replace('https://', '', HTTPS_SERVER))) ) || || (isset($_SERVER['SCRIPT_URI']) && strtolower(substr($_SERVER['SCRIPT_URI'], 0, 6)) == 'https:') || (isset($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == '443' ) ) ? 'SSL' : 'NONSSL';[/FONT]
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
lol it appears to be working fine, I'm not changing anything now that it's working![]()
I was hoping that if what I posted will work in your case that it may work for others as well, and therefore could be included in the next version of Zen Cart.
But thanks anyway.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
DrByte, the code you posted has some error in it, should be:
$request_type = ((isset($_SERVER['HTTPS']) && strtolower($_SERVER['HTTPS']) == 'on') ||
(isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == '1') ||
(isset($_SERVER['HTTP_X_FORWARDED_BY']) && strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_BY']),'SSL')) ||
(isset($_SERVER['HTTP_X_FORWARDED_HOST']) && (strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_HOST']),'SSL') ||
strstr(strtoupper($_SERVER['HTTP_X_FORWARDED_HOST']),str_replace('https://', '', HTTPS_SERVER))) ) ||
(isset($_SERVER['SCRIPT_URI']) && strtolower(substr($_SERVER['SCRIPT_URI'], 0, 6)) == 'https:') ||
(isset($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == '443' ) ) ? 'SSL' : 'NONSSL';
And I can confirm it doesnt solve the problem in my customer case.
I no longer provide installation support on forum for all my modules. However, if there are real bugs with the modules please feel free to contact me