Anyone else had the same. Any ideas on how to resolve? A bit random I know
We've just upgraded to OC3032 and Journal3. All seemed to work fine. But we are getting reports from customers that they cannot login when using Firefox or Safari. Google Chrome and IE are ok though. Weird. I checked on our own machines and sure enough, with Firefox you get the login box - enter your details & nothing happens. Just sits there.
Anyone else had the same. Any ideas on how to resolve? A bit random I know
Anyone else had the same. Any ideas on how to resolve? A bit random I know
Last edited by Nordikota on Sat Sep 14, 2019 12:54 am, edited 1 time in total.
Then why don't you fire up the good old browser developer tools and look what is going on?
Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces
“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.
Journal is a paid theme, they should provide support.
For quick, professional OpenCart support please email info@antropy.co.uk
Guru Member
well, first thing to do, you may not be a developer and able to fix it but it will tell you if you get a 404 or 500 error somewhere or a javascript error and it might even tell you which file it is which in turn may tell you if it is template related or not, your basic emergency room first assessment stuff.
That will also help in providing more detailed info when asking for help here or at the journal people.
That will also help in providing more detailed info when asking for help here or at the journal people.
Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces
“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.
Sounds like you are both saying it's a Journal issue. There is no error messages appearing. The screen gets stuck at the login page and won't go any further. The last message that appears in the developers section is the one I already posted.
Probably is, it's a very complex theme and the more moving parts the more chance of something breaking.
You should raise a support request with them in the first instance.
For quick, professional OpenCart support please email info@antropy.co.uk
Guru Member
Not necessarily.
perhaps you are mixing https:// with http:// or www with no www url's?
is a CORS issue.Permission denied to access property "document" on cross-origin object
perhaps you are mixing https:// with http:// or www with no www url's?
Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces
“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.
OK. I understand what you're saying, but not sure how to fix that. I've added a rewriterule into the HTAccess file to ensure all goes to the HTTPS site.
RewriteRule ^(.*)$ https://nordikota.co.uk/$1 [R=301,L]
Do I need to do anything more?
RewriteRule ^(.*)$ https://nordikota.co.uk/$1 [R=301,L]
Do I need to do anything more?
ok, but that is not the problem.
It is more about which links you are putting on the pages and whether they are from different domains.
http://www.domain.com
https://www.domain.com
http://domain.com
https://domain.com
are all different domains and browsers do not allow data to be transferred via http ajax requests without explicit permission, that is CORS.
That is why some browsers do and some don't allow it, it's a browser restriction and in this world not all browsers are equal.
I suspect that the error message was a little bit longer and also stated the reason, it normally does, and I suspect you are mixing some of those domains.
you can turn off CORS by simply explicitly allowing all cross origin transfers by putting this in htaccess
if module headers is not activated by your host you would have to send the header via php.
It is more about which links you are putting on the pages and whether they are from different domains.
http://www.domain.com
https://www.domain.com
http://domain.com
https://domain.com
are all different domains and browsers do not allow data to be transferred via http ajax requests without explicit permission, that is CORS.
That is why some browsers do and some don't allow it, it's a browser restriction and in this world not all browsers are equal.
I suspect that the error message was a little bit longer and also stated the reason, it normally does, and I suspect you are mixing some of those domains.
you can turn off CORS by simply explicitly allowing all cross origin transfers by putting this in htaccess
Code: Select all
<IfModule mod_headers.c>
Header set Access-Control-Allow-Origin "*"
</IfModule>Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces
“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.
can login just fine with firefox.
Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces
“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.
Added this to the Config.php and it fixed the issue. All customers who couldn't login previously are now able to get in.
Code: Select all
// Redirect users to the OpenCart installation url preventing cross-origin resource sharing policy errors.
if (strtolower($_SERVER['REQUEST_METHOD']) === 'get') {
$https = false;
if (isset($_SERVER['HTTPS']) && (($_SERVER['HTTPS'] == 'on') || ($_SERVER['HTTPS'] == '1'))) {
$https = true;
} elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' || !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') {
$https = true;
}
$current_url = parse_url(($https ? 'https' : 'http') . '://' . $_SERVER['HTTP_HOST'] . rtrim(dirname($_SERVER['PHP_SELF']), '/.\\') . '/');
$correct_url = parse_url($https ? HTTPS_SERVER : HTTP_SERVER);
if ($current_url !== $correct_url) {
if (dirname($_SERVER['PHP_SELF']) !== '/') {
$url = str_replace(dirname($_SERVER['PHP_SELF']), '', $_SERVER['REQUEST_URI']);
} else {
$url = $_SERVER['REQUEST_URI'];
}
$url = ($https ? HTTPS_SERVER : HTTP_SERVER) . ltrim($url, '/');
if (!headers_sent()) {
header('Location: ' . $url);
} else {
echo '<script>location = "' . $url . '";</script>';
}
exit;
}
}
Who is online
Users browsing this forum: No registered users and 6 guests
