How to enable SSL for the ENTIRE website?

[mrtank]

Hi,

I have a SSL certificate setup and running fine with Zen Cart. The thing is I have the website split into 2 different sections...

The normal website is for retail customers (www.mydomain.com). I then have a separate install of Zen Cart at: www.mydomain.com/trade This is meant for trade customers only.

Due to the way the client wanted it setup they required that all trade customers would have a single username and password to log in (which is supplied to them manually). Therefore I used htaccess to password protect the /trade directory of the website.

I use a https link for the trade section so that the login box for the trade section doesn't display a security error in IE. This all works fine, but when you log in and then click a link to a category or product the links are not using SSL (https) and thus the htaccess requires you to log in again.

If I could change the entire zen cart installation to run under SSL it wouldn't require the double login. I realise it's not ideal to run an entire site using SSL (slowness etc) but the traffic in the trade area is likely to be absolutely minimal, so I don't think it would be a problem (the website is pretty lightweight anyway).

Does anyone know how to do this? Basically I need all links to use https rather than http.

Buttons I have created myself can obviously be changed pretty easily but the automated links such as categories etc all use http by default.

Any help or advise would be greatly appreciated!

[kobra]

Edit the 2 configure.php files and toward the top where the domain is defined as
http and https
Change the http entries to https

[schoolboy]

[unnecessary comment made] deleted

[mrtank]

Edit the 2 configure.php files and toward the top where the domain is defined as
http and https
Change the http entries to https

Hi thanks for the reply

forgot to mention I'd already tried that:

changed includes/configure.php to:

Code:

// Define the webserver and path parameters
  // HTTP_SERVER is your Main webserver: eg-http://www.your_domain.com
  // HTTPS_SERVER is your Secure webserver: eg-https://www.your_domain.com
  define('HTTP_SERVER', 'https://mywebsite.com/trade');
  define('HTTPS_SERVER', 'https://mywebsite.com/trade');

  // Use secure webserver for checkout procedure?
  define('ENABLE_SSL', 'true');

and changed admin/includes/configure.php to:

Code:

* If you desire your *entire* admin to be SSL-protected, make sure you use a "https:" URL for all 4 of the following:
   */
  define('HTTP_SERVER', 'https://mywebsite.com/trade');
  define('HTTPS_SERVER', 'https://mywebsite.com/trade');
  define('HTTP_CATALOG_SERVER', 'https://mywebsite.com/trade');
  define('HTTPS_CATALOG_SERVER', 'https://mywebsite.com/trade');

  // Use secure webserver for catalog module and/or admin areas?
  define('ENABLE_SSL_CATALOG', 'true');
  define('ENABLE_SSL_ADMIN', 'true');

And still after that the category links etc are all still http

[mrtank]

anyone got any ideas on this one?

[Vger]

If you are using a Login box on the website then remove that from the column, which will force everyone to use the standard login link.

Vger