PDA

View Full Version : OSComm -->Zend_Cart config SSL Headhache



henry0
11-24-2004, 02:14 PM
Hello
Zen cart is an off spring of Oscomm (configuration is quite the same)
I have used both many times on other servers.
This is my first trial here

Well, I cannot after too many hours! figure how to properly configure the paths in both includes/configure.php and admin/includes/configure.php
Here is where I presently stand:

My cart shows fine, however if I order anything I am required to login (Which is correct) and then it tells me that I will get out of the secured area although the SSL address if showing fine in the browser address bar.
If I click OK and get out of secure I may process to order but without the padlock regardless of the SSL address which still shows correctly
in the browser address bar.

As is my post seems hard to fully understand without posting both config files
They are pretty small files so will it be OK to post those files?
(Of course after hiding DB conn script section!)

Thanks

Regards

Henry

henry0
11-25-2004, 06:12 AM
Since no one's telling me that I cannot post a file here are my configure files - DO YOU SEE ANY WRONG DOING?
I use the Shared SSL for test purpose, later will get a Commodo one.
<<<
THIS IS THE FIRST:
ROOT/INCLUDES/CONFIGURE.PHP

<?php
// Define the webserver and path parameters
// Main webserver: eg, http://localhost - should not be empty for productive servers
define('HTTP_SERVER', 'http://www.clickachef.com/');
// Secure webserver: eg, https://localhost - should not be empty for productive servers
define('HTTPS_SERVER', 'https://ssl4.westserver.net/clickachef.com');
// secure webserver for checkout procedure?
define('ENABLE_SSL', 'true');

// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
// these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
define('DIR_WS_CATALOG', '/cart_zen/');

define('DIR_WS_HTTPS_CATALOG', 'https://ssl4.westserver.net/clickachef.com/');
define('DIR_WS_IMAGES', 'images/');
define('DIR_WS_INCLUDES', 'includes/');
define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
define('DIR_WS_DOWNLOAD_PUBLIC', DIR_WS_CATALOG . 'pub/');
define('DIR_WS_BLOCKS', DIR_WS_INCLUDES . 'blocks/');
define('DIR_WS_TEMPLATES', DIR_WS_INCLUDES . 'templates/');

define('DIR_WS_PHPBB', '/');

// * DIR_FS_* = Filesystem directories (local/physical)
//the following path is a COMPLETE path to your Zen Cart files. eg: /var/www/vhost/accountname/public_html/store/
define('DIR_FS_CATALOG', '/var/www/html/cart_zen/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');
define('DIR_WS_UPLOADS', DIR_WS_IMAGES . 'uploads/');
define('DIR_FS_UPLOADS', DIR_FS_CATALOG . DIR_WS_UPLOADS);
define('DIR_FS_EMAIL_TEMPLATES', DIR_FS_CATALOG . 'email/');

// define our database connection
DELETED DB CONNECTION FOR POSTING CONFIG

// The next 2 "defines" are for SQL cache support.
// For SQL_CACHE_METHOD, you can select from: none, database, or file
// If you choose "file", then you need to set the DIR_FS_SQL_CACHE to a directory where your apache
// or webserver user has write privileges (chmod 666 or 777). We recommend using the "cache" folder inside the Zen Cart folder
// ie: /path/to/your/webspace/public_html/zen/cache -- leave no trailing slash
define('SQL_CACHE_METHOD', 'none');
define('DIR_FS_SQL_CACHE', '/var/www/html/admin/cache');

?>

THIS IS THE ADMIN/INCLUDES/CONFIGURE.PHP

<?php

// Define the webserver and path parameters
// Main webserver: eg, http://localhost - should not be empty for productive servers
define('HTTP_SERVER', 'http://www.clickachef.com/');
// Secure webserver: eg, https://localhost - should not be empty for productive servers
define('HTTPS_SERVER', 'https://ssl4.westserver.net/clickachef.com');
define('HTTP_CATALOG_SERVER', 'http://www.clickachef.com/');
define('HTTPS_CATALOG_SERVER', 'https://ssl4.westserver.net/clickachef.com/cart_zen');

// secure webserver for catalog module and/or admin areas?
define('ENABLE_SSL_CATALOG', 'true');
define('ENABLE_SSL_ADMIN', 'true');

// NOTE: be sure to leave the trailing '/' at the end of these lines if you make changes!
// * DIR_WS_* = Webserver directories (virtual/URL)
// these paths are relative to top of your webspace ... (ie: under the public_html or httpdocs folder)
define('DIR_WS_ADMIN', '/cart_zen/admin/');
define('DIR_WS_CATALOG', '/cart_zen/');

define('DIR_WS_HTTPS_ADMIN', 'cart_zen/admin/');

define('DIR_WS_HTTPS_CATALOG', '/cart_zen/');
define('DIR_WS_IMAGES', 'images/');
define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
define('DIR_WS_CATALOG_IMAGES', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'images/');
define('DIR_WS_CATALOG_TEMPLATE', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'includes/templates/');
define('DIR_WS_INCLUDES', 'includes/');
define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
define('DIR_WS_CATALOG_LANGUAGES', HTTP_CATALOG_SERVER . DIR_WS_CATALOG . 'includes/languages/');
define('DIR_WS_BLOCKS', DIR_WS_INCLUDES . 'blocks/');

// * DIR_FS_* = Filesystem directories (local/physical)
//the following path is a COMPLETE path to your Zen Cart files. eg: /var/www/vhost/accountname/public_html/store/
define('DIR_FS_ADMIN', '/var/www/html/cart_zen/admin/');
define('DIR_FS_CATALOG', '/var/www/html/cart_zen/');

define('DIR_FS_CATALOG_LANGUAGES', DIR_FS_CATALOG . 'includes/languages/');
define('DIR_FS_CATALOG_IMAGES', DIR_FS_CATALOG . 'images/');
define('DIR_FS_CATALOG_MODULES', DIR_FS_CATALOG . 'includes/modules/');
define('DIR_FS_CATALOG_TEMPLATES', DIR_FS_CATALOG . 'includes/templates/');
define('DIR_FS_CATALOG_BLOCKS', DIR_FS_CATALOG . 'includes/blocks/');
define('DIR_FS_CATALOG_BOXES', DIR_FS_CATALOG . 'includes/boxes/');
define('DIR_FS_BACKUP', DIR_FS_ADMIN . 'backups/');
define('DIR_FS_EMAIL_TEMPLATES', DIR_FS_CATALOG . 'email/');
define('DIR_FS_FILE_MANAGER_ROOT', '/var/www/html/cart_zen/'); // path to starting directory of the file manager

// define our database connection
DELETED BD CONNECTION FOR POSTING

// The next 2 "defines" are for SQL cache support.
// For SQL_CACHE_METHOD, you can select from: none, database, or file
// If you choose "file", then you need to set the DIR_FS_SQL_CACHE to a directory where your apache
// or webserver user has write privileges (chmod 666 or 777). We recommend using the "cache" folder inside the Zen Cart folder
// ie: /path/to/your/webspace/public_html/zen/cache -- leave no trailing slash
define('SQL_CACHE_METHOD', 'none');
define('DIR_FS_SQL_CACHE', '/var/www/html/cart_zen/cache');

?>

By advance thankyou
Regards
Henry

wildjokerdesign
11-25-2004, 09:13 AM
I wonder if it is your images that are being displayed unsecure. I am not sure exactly how it all works but I think you have to have a refrences to images as reletive to the page and not absolute or from site root. i.e. <img src="images/theimage.jpg"> and not <img src="/images/theimage.jpg"> . It seems your config files are set that way but wonder if within your pages there is an image or include that may be coded wrong.

I do notice three entries that do not follow the same format as the others:


define('DIR_WS_ADMIN', '/cart_zen/admin/');
define('DIR_WS_CATALOG', '/cart_zen/');

define('DIR_WS_HTTPS_CATALOG', '/cart_zen/');


I don't know that the first two matter but the third one may. The instructs do say they all should be reletive. I'm just guessing here but you may try to change those and see if it makes any difference.

henry0
11-25-2004, 09:38 AM
wildjokerdesign, Thank you
but it had no effect (only I was not able to reach my admin section)
BTW
Yes the admin works with SSL and the padlock shows as it is supposed to

Regards
Henry
PS our of curiosity
you may see live what's happening by going here and trying to log in
http://www.clickachef.com/cart_zen/

Do not worry about the top warning
I kept config writable for I overwrite it many times in expecting finding a solution

wildjokerdesign
11-25-2004, 04:38 PM
Very strange. I took a look at the login and the image sources are not secure. I can't see in your config files why it would not be makeing them secure. They only thing I can think of is it has to do with how the Shared SSL works. Since it runs through the WestHost server and is not actually a directory on your account that is for the files you want secured that may be the problem.

In your admin config file I do see this:
define('HTTPS_CATALOG_SERVER', 'https://ssl4.westserver.net/clickachef.com/cart_zen');

Then later there is:
define('DIR_WS_ADMIN', '/cart_zen/admin/');
define('DIR_WS_CATALOG', '/cart_zen/');

I would think if I understand the config file that you would want to drop the cart_zen from your first define of the ssl server since you then have it in the other two. Don't know that has anything to do with it but something I saw. I am not seeing anything like that in your first config but maybe there is and I am missing it.

Is there any info on the cart site about using shared SSL?

Tom Howard
11-25-2004, 08:21 PM
I've worked with zen-cart some myself. I've found that their forum is pretty good.

This post (http://www.zen-cart.com/modules/ipb/index.php?showtopic=12224&hl=shared+ssl) or this post (http://www.zen-cart.com/modules/ipb/index.php?showtopic=12338&hl=shared+ssl) might be of interest to you.

henry0
11-26-2004, 05:39 AM
Thank you very much both of you

I tried everythings and will now post @ Zen Cart

Yes they are pretty good at moderating their forums
If I find an answer I will post it

I know the cart and am not happy to think that I might have to learn a new one such as Miva

we'll see

regards

Henry