Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Admin page not logging secure, not displaying correct


4girlsandaguy

Recommended Posts

Hey guys,

Something happened over last weekend.  I was able to get orders and receive orders no problem.  Then on Monday, if you tried to place an order, it said unable to connect to database.php.  I got with my hosting company and they corrected this for me.  I am able to connect and place orders.  It looks fine.

Now when I go into the admin part of it, it is no longer secure.  It also displays incorrectly.  It is like the css file is missing but I don't want to mess with anything until I get some advice.  I have 2 websites with my hosting company and my other site is doing the same thing on the admin side.  

My hosting company said this is a developer issue and to get with them.  I do all my stuff so I am a guy.  Being nothing changed on my end, I am at a loss.  Here is what I am running currently.

Oscom 2.3.4 with some add ons.

Web php version 5.6.30

Attached is what my admin page looks like.  Once I log my credentials, it says my form is not secure.  Press ok and it takes me to my odd looking admin panel.

Screen Shot 2019-05-18 at 10.18.10 AM.png

Screen Shot 2019-05-18 at 10.18.38 AM.png

Link to comment
Share on other sites

1 hour ago, 4girlsandaguy said:

Press ok and it takes me to my odd looking admin panel.

I would go back to your host and tell them to look again. This is a common issue when hosts make changes to server paths without telling the users,

go to

/public_html/youradmin/includes/template_top.php

and check the path to your jquery .js and .css files  that is what is causing the plain admin page. You will probably find the path in your template top no longer matches waht is in your config or on your actual server.

Quick test view your admin page in browser code view and see if you can open the file by clicking on the link should look something like this

<link rel="stylesheet" type="text/css" href="https://yoursite.com/ext/jquery/ui/redmond/jquery-ui-1.10.4.min.css">
<script type="text/javascript" src="https://yoursite.com/ext/jquery/jquery-2.2.3.min.js"></script>
<script type="text/javascript" src="https://yoursite.com/ext/jquery/ui/jquery-ui-1.10.4.min.js"></script>

 

 

Link to comment
Share on other sites

A few general notes: did your host just upgrade PHP (to 5.6)? osC 2.3.4 (official release) is a bit long of tooth, and has been known to have problems with PHP versions above 5.4 or so, although I don't recall seeing problems this severe. Did you get moved to a different server? Did your host make any other changes, such as forcing SSL? It's not uncommon for one hand (server support) to make major changes and not tell the other hand (customer support) what they did. Could you have been hacked (any files show inexplicably recent updates)? Did you make some "innocent little change"?

By the way, PHP 5.6 is no longer supported (ditto 7.0) and 7.1 won't be soon, so try to upgrade your store before you run into severe problems on the next PHP upgrade. The only current osCommerce is "Frozen" (or "Edge", if you're adventurous) -- see link for it (plus patches) below in my signature. The official osC releases are years behind.

Link to comment
Share on other sites

I checked the browser code.   It looks just what you have.  But what is happening is that the .css and .js files are all blocked because it is a insecure site.  My shopping cart is secure but for some reason my admin page is not.  I will have my hosting site address this and follow up here.

Thanks for the insite and info.

 

Link to comment
Share on other sites

4 minutes ago, 4girlsandaguy said:

But what is happening is that the .css and .js files are all blocked because it is a insecure site

This will be down to you beeing on a shared server, looks like your host as turned on SSL on the server, just check you config file in admin/includes and make sure all http statments are changes to https.

You will need to check this for every link in your code as any that still call http will cause problems of mixed content.

 

Link to comment
Share on other sites

15 minutes ago, JcMagpie said:

This will be down to you beeing on a shared server, looks like your host as turned on SSL on the server, just check you config file in admin/includes and make sure all http statments are changes to https.

You will need to check this for every link in your code as any that still call http will cause problems of mixed content.

That did it.  Looks the way it should.......Thank you!!!!

Link to comment
Share on other sites

1 hour ago, 4girlsandaguy said:

Mr. Phil, how do I upgrade this?  Is this something I have to have my hosting company do or can I do this myself?

You have to do it yourself (it's not a one-button install in Softaculous, etc.), but if you pay your host enough money, they could probably be persuaded to do it for you. It's a manual install of the code (and a new database), and copy over and update your data (including the database). I would suggest setting up a private password-protected directory on your site and installing there, to try it out. You can play with the default sample data to see if you want to go further, then practice on a copy of your store's database (which will need to be updated). See if you need to install any add-ons, do any custom code changes, or just tweak the CSS in user.css file.

You're going to have to do this eventually, when your host upgrades to PHP 7, so you might as well dip your toes in the water now and get the feel of things on a safe play system, before it becomes an emergency situation. From your questions, it sounds like you know very little about running a website (the mechanics behind it), so you might want to bring someone on board to help you with all this.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...