Everything seems fine apart from the admin login form. Its action is pointed to the HTTP instead of HTTPS.
If I enable HTTP admin to login then switch to HTTPS everything is fine but when I define HTTPS everywhere the login form still points to HTTP so I can't log in due to mixed content.
What constant is used to determine the action URL of the login form?
.htaccess rules are applied by apache on requests, as far as I am aware it doesn't rewrite the actual HTML. All the config.php constant values point to HTTPS.
Did I miss any? I added this to admin config.php also.
I looked in the files that generate the form and it is populated by a variable "$action" so somewhere in the page lifecycle it is being set incorrectly. I think it is done by starter/router.php but I am not sure.
Everything else works fine. I could in theory hard code my sites link into the form but I would prefer to understand and fix the issue properly.
related to this - sometimes 'internally' not linked to HTTPS - Matter. They are untested, and
they come as they are, I cannot support anybody, because I don't use https yet!
Good Luck !
For Sale: Turnkey URLs with Opencart installed!
Latest Opencart LIGHT + V-Pro Test Site: http://www.hitline.info
Attacker IP Ranges are denied from further accessing my Sites.
For more Information, please contact me at: firstname.lastname@example.org
635 + free Mod-Repositories - from OC v.1.5.x up
on the largest Github Opencart Site: https://github.com/IP-CAM
Users browsing this forum: No registered users and 30 guests