Jump to content

SSL Certificate


Guest Tom S
 Share

Recommended Posts

The 404 error means that the webserver has received a request for a page that does not exist. That could happen if the directory information entered into the CC admin area was not correct.

When that happened to me, I had to restore my database to what it was before I enabled the SSL setting, because that information is encoded into the database. There may be some information either on this forum or over at the .ORG forum about resetting that without restoring the database, but I'd have to do a search to be sure.

When I first enabled my SSL settings, I had the directory information wrong.

If your installation is in a subdirectory, the first box will have something like:

/cubecartdirectory/

If your installation is in the root of your domain, then the first box will only have a slash: /

The next boxes do not need the trailing slash marks, and will be the whole URL including the https://. The domain part of this needs to be what was used in registering the SSL cert, which means that if you registered the SSL cert to https://www.domain.com or https://secure.domain.com or https://domain.com, then it needs to be the same here.

The current version of CC only has 2 boxes to fill now. What I had previously (3.0.10) had 3 boxes, and if I remember correctly, the extra box asked for the server path to your store, which means something like /home/username/public_html/subdirectory. Again here, no trailing slash.

Hope this helps.

Link to comment
Share on other sites

I have bought a dedicated ssl certificate so that the site can be secured. It seems to be working when I typed in https://www.my_domain_name.com. A message appears that you are going to a secure website.

However, I noticed that by default, it goes to a non-secure website when typing www.my_domain_name.com. How can I make my website by default goto the secure type? I made an attempt, but however as a result, I do not have access to my admin panel. The changes are as follow before the error came up:

I modified some General Settings within the Admin panel and these changes are as follow:

Root SECURE Public HTML:

/store/

Absolute SECURE URL:

https//www.my_domain_name.com/store

The SSL feature was enabled in the box.

As a result of these changes, I cannot goto into the Admin Panel. The following error message comes up:

"The page cannot be found"

Could you please assist me? I have made a mistake and according to my hosting company, they said the following: there is no /store directory, all of your script was setup in the public_html directory.

How can I rectify my error? What changes do I need to make so that it goes to my secure website by default?

Link to comment
Share on other sites

First, to correct the error, you'll need to restore a backup of your database.

If you didn't make a backup of your database before making changes, let this be a lesson to ALWAYS make a backup ANY time you make significant changes. (Maybe your server administrators can pull something from the last nightly backup.)

If your store is set up in the public_html directory, then the settings you need are:

Root SECURE Public HTML Folder to store: / (slash only)

(Include Trailing Slash)

Absolute SECURE URL to store: https://www.my_domain_name.com

e.g. https://secure.domain.com

There is no need to have your WHOLE store encrypted. That's the reason for having the SSL settings in CC. Standard CC operation will encrypt the "My Account" pages and the checkout pages, which are all that need to be encrypted.

Link to comment
Share on other sites

Thanks for the reply.

I have downloaded the config file. At the moment, I am looking at the ftp directory and noticed that there are two folder containing the same files.

These folder are: www and public_html. Please advice where do I need to reside that config file in order to correct the SSL error. Also, what setting do I need to correct in order to correct the ssl error.

Link to comment
Share on other sites

I have finally got the ssl working. I did the changes as explained in the previous message:

\ (my directory is in the root)

URL https:\\www.yourdomainname.com

SSL: YES

As a result, when typing the above url with https extension, it takes me to the non-secure. When I log-in or view the basket, the pages are secured. Is this supposed to be like this?

The only 'problem' that I found was that after a customer logs in, they are redirected back to the homepage, which is unsecure and IE gives a warning about being redirected to an unsecure page. Will this not lower the confidence and compromise the security? Why is it displaying this type of message when I thought all my website is secured.

I was planning to put the logo seal provided by my SSL certificate provider in the homepage. As this is now non-secure, can I still put it.

Link to comment
Share on other sites

  • 4 weeks later...

take the advice offered above and don't enable SSL via CubeCart or you'll end up going down a messy path.

Wish I had read that sooner.

I happen to have two CC sites, one with a disused domain name that I try things on. Today I tried CC enabling of SSL. Immediately I lost the ability to log back into admin!!

Both of my sites have personal SSL certificates, so I can reach stores with http or https. I suppose I could use redirects if I want all visitors to see the warm and fuzzy https.

Now, how do I undo the CC SSL setting on site #1? Is there a MySQL edit to revise?

Link to comment
Share on other sites

Guest shereen

As a result, when typing the above url with https extension, it takes me to the non-secure. When I log-in or view the basket, the pages are secured. Is this supposed to be like this?

yes, the way you set it up, it is supposed to be like that. that's the reason you enabled ssl in cc this way in the first place. in order to have only SOME of your pages secure and only OTHER pages unsecure. that was alant's whole point: instead of having your entire store under ssl, you only put some of your store under ssl. technically, the way you described it above, is the way it's supposed to work the way you set it up.

The only 'problem' that I found was that after a customer logs in, they are redirected back to the homepage, which is unsecure and IE gives a warning about being redirected to an unsecure page. Will this not lower the confidence and compromise the security? Why is it displaying this type of message when I thought all my website is secured.

noooo, you are not putting your entire store under ssl. remember, alant's earlier point was that this was too much for a shared server to handle. so, you have followed instructions and it is working the way it is supposed to work: only part of your store is under ssl while another part of your store is not under ssl.

also, alant mentioned in one of his earlier posts that he, too, receives those messages (go back and review the posts in this thread). so, this is normal for the way you setup ssl.

yes, i too think these warning messages may reduce confidence in visitors to the site. i didn't like those messages myself, so that's why i placed my entire store under ssl, and i did it using the redirect page. ((as a sidenote, my business got mentioned in paul lukas' "uniwatch" column at espn.com and on thursday i recieved >8,000 visits--not hits!! but actual visits!! (i got >50,000 hits on that one day)--and yesterday i received >3,000 visits. i have no idea how many visits or hits it takes to crash a server, but so far using my host's shared ssl for my entire store is holding up fine...))

--s--

http://www.splashgearusa.com

Link to comment
Share on other sites

Guest shereen

take the advice offered above and don't enable SSL via CubeCart or you'll end up going down a messy path.

Wish I had read that sooner.

I happen to have two CC sites, one with a disused domain name that I try things on. Today I tried CC enabling of SSL. Immediately I lost the ability to log back into admin!!

yup!! that's exactly what happened to me on a number of occasions when i was trying to enable ssl in cc.

Now, how do I undo the CC SSL setting on site #1? Is there a MySQL edit to revise?

...if you are asking how to access your admin page, use this config tool: https://www.cubecart.com/site/helpdesk/inde...d=9&nav=0,5 <---this is a lifesaver!! :lol:

otherwise, if you are asking how to permanently make changes to your mysql database, i think you need to review some of alant's posts...

best wishes.

--s--

http://www.splashgearusa.com

Link to comment
Share on other sites

  • 3 weeks later...

((as a sidenote, my business got mentioned in paul lukas' "uniwatch" column at espn.com and on thursday i recieved >8,000 visits--not hits!! but actual visits!! (i got >50,000 hits on that one day)--and yesterday i received >3,000 visits. i have no idea how many visits or hits it takes to crash a server, but so far using my host's shared ssl for my entire store is holding up fine...))

--s--

http://www.splashgearusa.com

That's very impressive!

One of the questions that we've been addressing here is the possible impact that using a shared server's URL has on the conversion rates of a site. Do you mind letting us know how many of those 8000 visitors completed a purchase? Was it more or less than 2% (160)? Was it at least 1% (80)? And do you mind sharing what the total value of the sales were for those 8000 visitors?

{BTW, the conversion rate on my site is currently a little over 2.2%, although that also includes many free orders. Average visitor value is $0.52, which is low.}

Personally, if I go to a site and the URL changes from the domain name I expected to see, my confidence in the site drops like a stone and I don't buy anything from that site. I have a feeling that many others feel the same, and that you'd probably get more sales if the URL stayed the same, which would happen when you invest $80 or so for your own SSL cert.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...