Jump to content

Dedicated SSL not working properly when enabling SSL in admin


Guest sparkdigital

Recommended Posts

Guest sparkdigital

Hi,

I've purchased a SSL for my client www.poolstop.co.uk. It has been set up by my host and I think it's done properly as the geotrust seal shows that the website is secure. The new cubecart store is located in the /shop folder.

I've enabled SSL in the admin section with the following details:

Root SECURE Public HTML Folder to store: /shop/

Absolute SECURE URL to store: https://www.poolstop.co.uk/shop

Enable SSL: YES

Now any secure page/section on the site such as admin and cart return the following error:

"Problem loading page > The page isn't redirecting properly > Firefox has detected that the server is redirecting the request for this address in a way that will never complete."

The url displayed is: https://www.poolstop.co.uk/shop/admin/index.php? and that's it. When I type in https://www.poolstop.co.uk/shop the shop opens as normal but a trailing slash appears at the end of the url.

I know I can restore my settings using editconf.php but where do I go from here?

Any help would be greatly appreciated!

Thanks,

Konrad

Link to comment
Share on other sites

Guest sparkdigital

Hi Roban,

Thanks for your help - changing /shop/ to /shop doesn't do the trick, the url https://www.poolstop.co.uk/shop/cart.php?act=cart still does a problem loading page with the same message as above.

My globals are:

$glob['dbdatabase'] = 'xxxx';

$glob['dbhost'] = 'mysql2.namesco.net';

$glob['dbpassword'] = 'xxxx';

$glob['dbprefix'] = '';

$glob['dbusername'] = 'xxxx';

$glob['installed'] = '1';

$glob['rootDir'] = '/content/DesignerPlus/p/o/poolstop.co.uk/web/shop';

$glob['rootRel'] = '/shop/';

$glob['storeURL'] = 'http://www.poolstop.co.uk/shop';

Hope this gives you a clue.

Thanks,

Konrad

Link to comment
Share on other sites

Guest quietype

Hi Roban,

Thanks for your help - changing /shop/ to /shop doesn't do the trick, the url https://www.poolstop.co.uk/shop/cart.php?act=cart still does a problem loading page with the same message as above.

My globals are:

$glob['dbdatabase'] = 'xxxx';

$glob['dbhost'] = 'mysql2.namesco.net';

$glob['dbpassword'] = 'xxxx';

$glob['dbprefix'] = '';

$glob['dbusername'] = 'xxxx';

$glob['installed'] = '1';

$glob['rootDir'] = '/content/DesignerPlus/p/o/poolstop.co.uk/web/shop';

$glob['rootRel'] = '/shop/';

$glob['storeURL'] = 'http://www.poolstop.co.uk/shop';

Hope this gives you a clue.

Thanks,

Konrad

I could be wrong but I was having the same problem and it was simple.

$glob['rootRel'] = '/shop/';

Should be

$glob['rootRel'] = '/';

Just the one foward slash without the "shop" added

Hope this helps!

Link to comment
Share on other sites

Guest sparkdigital

Thanks for the suggestion but unfortunately that doesn't work - it can't find the right folder and displays a page not found so I think the /shop/ setting is correct.

Any other ideas?

Thanks,

Konrad

Link to comment
Share on other sites

Konrad, I just browsed your site with no problems, no problems viewing empty basket, no problems adding items then viewing basket, and no problems getting the adminn login screen.

IOW, no problems at https://www.poolstop.co.uk/shop/cart.php?act=cart

also, no problems at https://www.poolstop.co.uk/shop/admin/login...admin/index.php

P.S. - using FF 2

Link to comment
Share on other sites

Guest sparkdigital

Thanks for checking! It is working properly in SSL but I've redirected the WHOLE site to SSL using a permanent redirect in HTaccess.

If I use the SSL settings in the general settings of the admin panel it gives me the errors as listed above.

Any idea?

Thanks,

Konrad

Link to comment
Share on other sites

Guest quantex

Hi,

Looking at your site you seem to have solved this now, I have the same problem I think, I have setup the ssl in admin but when you type https it just returns to http and isn't showing the padlock, seems to be secure in admin though. What did you need to do please?

Paul

Link to comment
Share on other sites

Guest sparkdigital

Hi Quantex,

The initial problem hasn't been solved - I've just done a quick workaround using HTaccess and diverting everything to https instead of just the cart and admin section.

I would however still prefer to use the SSL settings in Cubecart and only have the cart and admin on https.

Any suggestions?

Thanks,

Konrad

Link to comment
Share on other sites

Guest quantex

Hi,

I have the same problem I'm afraid, it seems that the only part of cubecart (in my case anyway) that is secure is the cart, if this is how it is supposed to be then it isn't worth having.

Paul

Link to comment
Share on other sites

Guest dpage44

im confused about why anything more than the login/cart needs to be secure??

It doesn't. Browsing the store doesn't need SSL. No sensitive data will be stolen. Take a look at Amazon.com, target.com, eddiebauer.com, gap.com ...any major retailer. You cruise the store and add products to the basket in http. you only go to https when you starting checking out.

Link to comment
Share on other sites

Guest sparkdigital

This is getting a bit confusing now.... I DON'T need any more than the cart and admin section on SSL but when I enable the SSL settings in the admin section it gives me the page not found as stated above.

So that's why I've decided to have the WHOLE site on SSL using a redirect. But I appreciate this isn't ideal so I would like to use the cubecart settings and ONLY have the cart and admin section on SSL.

Hope this makes sense...

Link to comment
Share on other sites

Guest sparkdigital

UPDATE: I'm now having exactly the same problem with another website where I'm trying to do the same. Both are hosted on the same platforms so maybe the answer is there.

I get the following info:

Array ( [PATH] => /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/usr/X11R6/bin:/root/bin [sERVER_ADMIN] => [email protected] [VSERVER_NAME] => DesignerPlus [sERVER_PORT] => 80 [AUTH_TYPE] => Basic [sERVER_PROTOCOL] => HTTP/1.1 [GATEWAY_INTERFACE] => CGI/1.1 [sERVER_SOFTWARE] => Zeus/4.3 [sCRIPT_FILENAME] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [REQUEST_METHOD] => GET [REQUEST_URI] => /index.php [QUERY_STRING] => [PATH_INFO] => [PATH_TRANSLATED] => [sCRIPT_NAME] => /index.php [REMOTE_HOST] => 62.56.71.45 [REMOTE_ADDR] => 62.56.71.45 [REMOTE_USER] => [CONTENT_LENGTH] => 0 [DOCUMENT_ROOT] => /content/DesignerPlus/e/-/www.e-quester.com/web [sERVER_NAME] => www.e-quester.com [REDIRECT_URL] => /index.php [REDIRECT_STATUS] => 200 [REDIRECT_PATH] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [HTTP_ACCEPT_LANGUAGE] => en-us,en;q=0.5 [HTTP_COOKIE] => ccUser=NmM3NTU1MDAyMTlhYjkyNjMzNmIzMDI2NTUyMjk3MWY%3D; ccSID=5f71f6d001b730607be373d250e8fae6; X-Mapping-kjicghkc=47ABCCCA43E345765446431FAE1124C6 [HTTP_HOST] => www.e-quester.com [HTTP_ACCEPT_ENCODING] => gzip,deflate [HTTP_USER_AGENT] => Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.11) Gecko/20070312 Firefox/1.5.0.11 [HTTP_KEEP_ALIVE] => 300 [HTTP_ACCEPT_CHARSET] => ISO-8859-1,utf-8;q=0.7,*;q=0.7 [HTTP_ACCEPT] => text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,<_<;q=0.5 [HTTP_CONNECTION] => keep-alive [ORIG_PATH_TRANSLATED] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [ORIG_PATH_INFO] => /index.php [ORIG_SCRIPT_NAME] => /php-cgi/php [ORIG_SCRIPT_FILENAME] => /usr/local/bin/php [php_SELF] => /index.php [argv] => Array ( ) [argc] => 0 ) :www.e-quester.com::80:

:::1:

Does this giove anyone any clues?

Thanks,

Konrad

P.s. I particularly like the smiley in there :)

Link to comment
Share on other sites

Guest quietype

UPDATE: I'm now having exactly the same problem with another website where I'm trying to do the same. Both are hosted on the same platforms so maybe the answer is there.

I get the following info:

Array ( [PATH] => /usr/kerberos/sbin:/usr/kerberos/bin:/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin:/usr/X11R6/bin:/root/bin [sERVER_ADMIN] => [email protected] [VSERVER_NAME] => DesignerPlus [sERVER_PORT] => 80 [AUTH_TYPE] => Basic [sERVER_PROTOCOL] => HTTP/1.1 [GATEWAY_INTERFACE] => CGI/1.1 [sERVER_SOFTWARE] => Zeus/4.3 [sCRIPT_FILENAME] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [REQUEST_METHOD] => GET [REQUEST_URI] => /index.php [QUERY_STRING] => [PATH_INFO] => [PATH_TRANSLATED] => [sCRIPT_NAME] => /index.php [REMOTE_HOST] => 62.56.71.45 [REMOTE_ADDR] => 62.56.71.45 [REMOTE_USER] => [CONTENT_LENGTH] => 0 [DOCUMENT_ROOT] => /content/DesignerPlus/e/-/www.e-quester.com/web [sERVER_NAME] => www.e-quester.com [REDIRECT_URL] => /index.php [REDIRECT_STATUS] => 200 [REDIRECT_PATH] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [HTTP_ACCEPT_LANGUAGE] => en-us,en;q=0.5 [HTTP_COOKIE] => ccUser=NmM3NTU1MDAyMTlhYjkyNjMzNmIzMDI2NTUyMjk3MWY%3D; ccSID=5f71f6d001b730607be373d250e8fae6; X-Mapping-kjicghkc=47ABCCCA43E345765446431FAE1124C6 [HTTP_HOST] => www.e-quester.com [HTTP_ACCEPT_ENCODING] => gzip,deflate [HTTP_USER_AGENT] => Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.11) Gecko/20070312 Firefox/1.5.0.11 [HTTP_KEEP_ALIVE] => 300 [HTTP_ACCEPT_CHARSET] => ISO-8859-1,utf-8;q=0.7,*;q=0.7 [HTTP_ACCEPT] => text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,:errm:;q=0.5 [HTTP_CONNECTION] => keep-alive [ORIG_PATH_TRANSLATED] => /content/DesignerPlus/e/-/www.e-quester.com/web/index.php [ORIG_PATH_INFO] => /index.php [ORIG_SCRIPT_NAME] => /php-cgi/php [ORIG_SCRIPT_FILENAME] => /usr/local/bin/php [php_SELF] => /index.php [argv] => Array ( ) [argc] => 0 ) :www.e-quester.com::80:

:::1:

Does this giove anyone any clues?

Thanks,

Konrad

P.s. I particularly like the smiley in there ;)

I dont think cubecart will respond to this as they have not given resolution to the Dedicated IP SSL admin login error messages. You might want to post your question on the internet at one of the SSL help forums. You may get a response there.

Link to comment
Share on other sites

Guest dpage44

I've purchased a SSL for my client www.poolstop.co.uk. It has been set up by my host and I think it's done properly as the geotrust seal shows that the website is secure. The new cubecart store is located in the /shop folder.

Just curious: When you generated the CSR for your SSL certificate, was the URL used www.poolstop.co.uk or www.poolstop.co.uk/shop ?

Link to comment
Share on other sites

  • 3 weeks later...
Guest sparkdigital

Just looking at editconf.php and wondering what the difference is between the following:

$config['rootDir_SSL']

$config['rootRel_SSL']

$config['ssl']

$config['storeURL_SSL']

Thanks,

Konrad

Link to comment
Share on other sites

Guest sparkdigital

To avoid confusion: forget about the poolstop.co.uk website and look at this other website I created, I've got the same problem here:

www.e-quester.com/index.php

Everything is fine until you want to view your cart or access the admin panel, firefox then says:

Problem loading page.

The page isn't redirecting properly

Firefox has detected that the server is redirecting the request for this address in a way that will never complete

* This problem can sometimes be caused by disabling or refusing to accept cookies.

with the following url: https://e-quester.com/cart.php?act=cart&amp...er=&ccUser=

with a never ending &ccUser=&ccUser=&ccUser=&ccUser=&ccUser=&ccUser=&ccUser=.

My settings in the admin panel are as follows:

Root SECURE Public HTML Folder to store: /

Absolute SECURE URL to store: https://e-quester.com

Enable SSL: YES

Hope this gives one of you an idea as to what it could be.

Thanks,

Konrad

Link to comment
Share on other sites

OMG what is the deal with this? I've seen like 10 threads about this same problem (which I am also experiencing) and there is never a solution/fix. This seems to be a SERIOUS flaw in the software -- you guys need to fix this! I would think this would be considered an extremely important bug fix.

So the solution is "don't use SSL"? Huh?

Link to comment
Share on other sites

Guest sparkdigital

After going backwards and forwards my host was kind enough to look into the code and with a few extra lines in functions.inc.php all is working:

//////////////////////////////////

// detect if store is under SSL

////////

function detectSSL(){

if(isset($_SERVER['HTTP_SSLCLIENTCIPHER'])){

return TRUE;

}

elseif($_SERVER["HTTPS"] == "on"){

return TRUE;

} elseif ($_SERVER["HTTPS"] == 1){

return TRUE;

} elseif ($_SERVER['SERVER_PORT'] == 443) {

return TRUE;

} else {

return FALSE;

}

}

Thanks to namesco for a great job!

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...