SSL issue on checkout

Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic

   Hi, I have an issue with the SSL on the checkout pages. 

Using version 3.51 - I have a dedicated SSL certificate for the store. In settings I have the SSL enabled and the SSL URL as https://shop.domain.com. I have 1st option selected for Login / Registration. 

1st - No problem Scenario

Before I browse the store to find the product I have 'http://'. I login in 1st and get the https:// on the login page and am secure logging in and browsing the store. Once I find the item I need and add to cart and proceed to check out everything is done with https://...No problems.

2nd - PROBLEM scenario

If I 1st browse the website with http:// and find the product I want and add to the basket I don't have a problem. On the page 'viewcart' page I have a checkout button in the middle section to the left which if I hover over will have the 'https://.....checkout.asp' link but the 'checkout link on the right panel that has the summary of the cart has 'http://...checkout.asp'. If I use this link it will take me to the login page but the page will be http:// and NOT https:// as it should be.

Anyone encounter this before and is there a fix for this.

Thanks

Author	Message Topic Search Topic Options Post Reply Create New Topic Printable Version Translate Topic
ss1001 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 27-May-2008 Status: Offline Points: 0	Post Options Post Reply Quote ss1001 Report Post Thanks(0) Quote Reply Topic: SSL issue on checkout Posted: 22-March-2011 at 8:57am
	Hi, I have an issue with the SSL on the checkout pages. Using version 3.51 - I have a dedicated SSL certificate for the store. In settings I have the SSL enabled and the SSL URL as https://shop.domain.com. I have 1st option selected for Login / Registration. 1st - No problem Scenario Before I browse the store to find the product I have 'http://'. I login in 1st and get the https:// on the login page and am secure logging in and browsing the store. Once I find the item I need and add to cart and proceed to check out everything is done with https://...No problems. 2nd - PROBLEM scenario If I 1st browse the website with http:// and find the product I want and add to the basket I don't have a problem. On the page 'viewcart' page I have a checkout button in the middle section to the left which if I hover over will have the 'https://.....checkout.asp' link but the 'checkout link on the right panel that has the summary of the cart has 'http://...checkout.asp'. If I use this link it will take me to the login page but the page will be http:// and NOT https:// as it should be. Anyone encounter this before and is there a fix for this. Thanks

Greg Dinger Members Profile Send Private Message Find Members Posts Add to Buddy List Certified ProductCart Developers Joined: 23-September-2006 Location: United States Status: Offline Points: 238	Post Options Post Reply Quote Greg Dinger Report Post Thanks(0) Quote Reply Posted: 22-March-2011 at 11:20am
	Could you just post a link to the site please? It's so much easier if we have the actual site so that we can follow your reported steps and make observations rather than guessing.

ss1001 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 27-May-2008 Status: Offline Points: 0	Post Options Post Reply Quote ss1001 Report Post Thanks(0) Quote Reply Posted: 22-March-2011 at 3:13pm
	Thank for your reply, I don't have the site live we are trying it out on our intranet before we go live. I believe the issue is in the smallshoppingcart.asp file. I am looking but I believe there should be somehwere where we need to setup the link to use https:// as it is for the other button in 'viewcart.asp' line 1474 <div style="padding-top: 3px;"><a href="<%=strRedirectSSL%>" onclick="javascript: if ((RemainIssue!='') \|\| (RemainIssue1!='')) {alert('<% Response.write(dictLanguage.Item(Session("language")&"_alert_8b"))%>'); return(false);}"><img src="<%=RSlayout("checkout")%>" border="0" alt="<%=dictLanguage.Item(Session("language")&"_altTag_12")%>"></a></div> The text in green is for the https:// I believe and so we need to program the link in smallshopping cart.asp to redirect using https://...which I believe is somehwere in lines 197~207. Any assistance is appreciated. Thanks

Matt Members Profile Send Private Message Find Members Posts Add to Buddy List Moderator Group Joined: 20-July-2006 Location: United States Status: Offline Points: 73	Post Options Post Reply Quote Matt Report Post Thanks(0) Quote Reply Posted: 22-March-2011 at 3:20pm
	You should not have to modify any source code for SSL. It should work "out of the box". You probably do not have the setting in IIS selected to maintain the same session over SSL. Check with your server admin.

ss1001 Members Profile Send Private Message Find Members Posts Add to Buddy List Newbie Joined: 27-May-2008 Status: Offline Points: 0	Post Options Post Reply Quote ss1001 Report Post Thanks(0) Quote Reply Posted: 22-March-2011 at 3:42pm
	Hi, That is what I would have expected. However, I finally just did a ‘google’ on the filename and I came across a post in the UK that referred to the same issue, which had a re-direct to your sites FAQ as copied below. It is something that you guys are aware of and basically suggested a hardcode of the https link. Please check this out. I was looking for a more elegant solution as I used the hardcoded URL to temporarily fix the issue. http://www.earlyimpact.com/faqs/e-commerce_shopping_cart_questions.asp?faqid=517 Let me know if there is still an IIS issue that I may be overlooking. Thanks.

Matt Members Profile Send Private Message Find Members Posts Add to Buddy List Moderator Group Joined: 20-July-2006 Location: United States Status: Offline Points: 73	Post Options Post Reply Quote Matt Report Post Thanks(0) Quote Reply Posted: 22-March-2011 at 3:48pm
	That FAQ is pretty old and is not applicable to ProductCart v4. I would double check the IIS setting to maintain the same session, at least to be on the safe side.