Jump to content

Session ID shown in Address Bar?


huggettm

Recommended Posts

Hi, just added SSL to my cc4 site, first of all it caused errors when I did not have it set to 'forced' as then I could not log in as a shopper, so i have set it to forced now.

However, in the address bar it is showing session id info - eg : "ccUser=a04306f542b83c1392971e6423a50dd7"

Which is obviously not ideal, this disappears if I turn off "Use search engine friendly URL?" - but obviously I don't want to do that either! (as it looks rubbish and Ill have to redo all my google merchant center feeds)

Am I missing a setting somewhere?

Any help would be great

Thanks

Mark

Link to comment
Share on other sites

The ccUser is what CC4 would use as a cookie if cookies were permitted to be used in your server/php/ssl environment.

There must be some sort of issue with SSL and Cubecart pages if you have to 'force' SSL to be used instead of letting CC4 decide for itself.

Viewing Products, Categories, and Documents are all that search engines and links to merchant center feeds need to have access to. And those pages don't need to be behind SSL.

Link to comment
Share on other sites

Hi bsmither,

Thank you for the reply, when I didnt have 'force ssl' enabled i get an error when customers try to log in like this -

**********************

Warning: preg_match() [function.preg-match]: Unknown modifier '/' in /home/wildfan/public_html/store/classes/session/cc_session.php on line 191

Warning: Cannot modify header information - headers already sent by (output started at /home/wildfan/public_html/store/classes/session/cc_session.php:191) in /home/wildfan/public_html/store/includes/functions.inc.php on line 98

Warning: Cannot modify header information - headers already sent by (output started at /home/wildfan/public_html/store/classes/session/cc_session.php:191) in /home/wildfan/public_html/store/includes/functions.inc.php on line 99

Warning: Cannot modify header information - headers already sent by (output started at /home/wildfan/public_html/store/classes/session/cc_session.php:191) in /home/wildfan/public_html/store/includes/functions.inc.php on line 101

**********************

Any ideas?

Thanks

Mark

Link to comment
Share on other sites

I think you may be running CC4.4.3 or CC4.4.4? These are the only versions I have that have preg_match on line 191. And the statement looks fine to me. This statement is as it appears all the way to CC4.4.7, the latest version.

Warnings 2-4 are because of the first warning.

Link to comment
Share on other sites

Would you check the following with a copy of the statement from line 191 in the file /classes/session/cc_session.php:

if (preg_match('/^http(s?):///i', $redir) && !preg_match('/^'.$glob['storeURL'].'|^'.$config['storeURL_SSL'].'/i', $redir)) {

Also, in the file /includes/global.inc.php, find this statement and report what yours says:

$glob['storeURL'] = 'YOUR_STORE_ADDRESS';

Then, in the admin screen for the Store's General Settings, what do you have for HTTPS Absolute URL:?

Note: For these settings, there must not be a trailing slash.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...