373 replies to this topic

[germ]

The HTTPS_COOKIE_DOMAIN is wrong.

Try this:

  define('HTTPS_COOKIE_DOMAIN', '.loopiasecure.com');
 

But you have other problems.

The store isn't recognizing that SSL is "on", it happens a lot with shared SSL.

In the second post in this thread is a link to a contribution I wrote to help fix this.

Download it, unzip it, and upload the files to your shop.

Then let me know so I can access them and see what we need to change.

[addeaz]

Hi,
Thank you for your help, I did the cookie change!
The contribution is installed, hard for me to see if it tells that something is wrong:)

When I try to log in to the website and SSL is on, I'm landing to this page "https://kameraexperten-com.loopiasecure.com/index.php", but Im not loged in to the site. When SSL is off I get logged in as normal.


Thank you for helping!

Best Regards
Andreas

Edited by addeaz, 03 January 2012, 17:39.

[germ]

In /includes/application_top.php change this code:

  $request_type = (getenv('SERVER_PORT') == 'on') ? 'SSL' : 'NONSSL';
 

To:

  $request_type = (getenv('SERVER_PORT') == '443') ? 'SSL' : 'NONSSL';
 

[addeaz]

Hi Germ,
Great that fixed the problem......big thanks, you are the best!!

Best Regards
Andreas

[germ]

I'm glad the SSL part is working.

Just an "FYI" your iframe to facebook is giving the infamous "non secure items" popup in IE.

You can't load content (images, scripts, iframes, etc.) from http sources on https pages.

[addeaz]

Hi again Germ,
Ok, so it is that iframe that gives me that popup in IE, thanks for that information.

- Is it possible to adjust this in the script so I skip that infamous popup and still can show the Facebooks likes? Maybe is it possible to load that frames script from a https Facebook source?
- This popup is shown at all SSL active pages, how do I turn of SSL in some of the pages (I dont like that the shared URL is shown more than necessary)

Best regards
Andreas

[addeaz]

Hi
I did notice that I could change the likebox URL to https fairly easy. So the pop up is gone:)

Now I will see if I find out how to get the checkout page non SSL.

Best Regards
Andreas

[germ]

Your "LiveZilla.net Chat Button Link Code" is still giving the "unsecure content" warning in IE.

There is a post in this thread that shows how to not display "unsecure" content on SSL pages if you look.

[addeaz]

Hi Germ,
Thanks again, I fixed that one too (on my live site).

SSL is on and it works, something is a bit strange though;

When I enter the pages where SSL is turned on, the web site get a bit smaller, the texts, frames and so on. Not much, but it is noticable.

Please help me if you have any clue about this one:)

Cheers,

Best Regards
Andreas

[germ]

Now your "Online Support" button/code is giving the "unsecure items" pop-up.

[addeaz]

Hi Germ,
I guess I fixedit to be ok, on www.StylingAgenten.se, where the Live - site is. I don't get that pop-up, please reply if you do:)

Best Regards
Andreas

[patrickluursema]

Got it figured out thanks to this thread. Thanks a lot.
Regards,

Patrick Luursema

[Jeff Marincel]

I'm having issues with my SSL staying locked, When I go to login, or Cart Checkout, etc. where SSL should be locked. The page starts out locked but then is unlocked even though the address still show https Why is this doing this and what can I do to correct.

[DunWeb]

@Jeff Marincel

Did you modify the checkout pages ?



Chris

[germ]

You probably have "unsecure content" (i.e. scripts or images loaded from http sources on the https pages)

My guess is your main browser is probably Firefox.

Try using Internet Explorer. My guess is you'll get the infamous "unsecure content" warning.

[Jeff Marincel]

I'm not getting any Unseruce Content warnings, and I don't remember modifying my checkout pages. I've tried this on pretty much all browsers with the same results.

[germ]

Can't offer any more help without the URL (posted or by PM).

[Jeff Marincel]

In Catalog/includes/configure.php I changed
define('HTTP_SERVER', 'http://mydomain.com');

to

define('HTTP_SERVER', 'https://mydomain.com');

Now everypage is locked but at least the login and checkout stay locked this way.

[germ]

I can't help debug the problem with your "band-aid" in place.

[Jeff Marincel]

OK, I took the band aid off.