Page 2 of 2

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 12:44 am
by Qphoria
jty wrote:
Qphoria wrote: Really IE is better here?! but IE is notorious for the "There are both secure and non-secure items on this page" which scared the hell out of my customers
Per Bruce, it might be my IE browser settings
But that can be other people's settings too

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 6:28 am
by JNeuhoff
Conceptually, that is what I want ie write the order first then go off to pay
Take a look at the Google Checkout module or PayPal Improved.

Use the folloing functions in your payment module:

Code: Select all

	function getActionUrl() {
		return $this->url->ssl('checkout_process');
	}


	function fields() {	
		return '';
	}
And in your function process() just get the order details from the $this->order properties and copy them into local variables, then do the

Code: Select all

	$this->order->process($results['order_status_id']);
	$this->cart->clear();
and finally transfer to your payment gateway using the saved order values from the local variables as GET or PUT variables or as embedded XML, whatever format your payment gateway requires.
How do you enable shared SSL on Open Cart? I thought Open Cart couldn't do shared SSL.
OpenCart doesn't, it's up to your web hosting provider to offer this. You (and your payment gateway if it sends back messages) just need to be able to access your OpenCart server, especially the callback function, via the HTTPS protocol. Also make sure your specify the HTTPS_BASE in your config.php file.

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 8:47 am
by Qphoria
JNeuhoff wrote:
How do you enable shared SSL on Open Cart? I thought Open Cart couldn't do shared SSL.
OpenCart doesn't, it's up to your web hosting provider to offer this. You (and your payment gateway if it sends back messages) just need to be able to access your OpenCart server, especially the callback function, via the HTTPS protocol. Also make sure your specify the HTTPS_BASE in your config.php file.
OpenCart doesn't support it tho. Due to the session/cookie domain stuff. When you leave mysite.com to goto shared.hosting.com/~mysite it drops your session. We are researching some ways to do it properly for v0.8

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 10:30 am
by bruce
jty wrote:
as an aside, I was also unable to use
$this->order->getReference()
for a reference number if I process the order "before" going to payment gateway as OPen Cart generates a new reference that is not the same as the order's reference.
I ignored that problem and just use the buyers phone number as a ref. That'll do.
A fix for this is posted here.

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 5:49 pm
by JNeuhoff
OpenCart doesn't support it tho. Due to the session/cookie domain stuff. When you leave mysite.com to goto shared.hosting.com/~mysite it drops your session.
I know. However, the shared SSL is good enough for the callback function, for receiving messages back from the payment gateway, like in the Google Checkout, where I use something like "https://gatorxxx.hostgator.com/~user/in ... ent=google" (I use HostGator web hosting).

Re: https issues with cart/session

Posted: Wed Nov 12, 2008 6:38 pm
by jty
I finally fixed it  :P
I was clearing the cart in the wrong place so I kept getting a zero dollar amount  ::)

With the shared SSL, yes, it is usable to obliterate the security warning message, but the cart must be emptied first before going off to the payment gateway. Otherwise, you'll have the nightmare I just woke up from  >:(

Bruce, I will "dance in the dark" with your reference information another day. I've had enough for now. I have it on my list of things to do. For now, it's not critical as I can match payments by name, email, phone, number and dollar amount.

Thanks again everyone.

Re: https issues with cart/session

Posted: Tue Dec 09, 2008 3:40 am
by debbie703
JNeuhoff wrote: I noticed similar problems with the shared SSL while testing the GoogleCheckout module.

I don't really need SSL for my stores, because any criticical credit card details and payments are handled on the Google Checkout pages which uses its own SSL anyway. However, when Google sends back messages, e.g. 'payment processed', etc., to OpenCart's callback function, Google always insists on using SSL, even though the messages it sends don't contain any critical details (no credit details, no passwords ). Still, I had to enable shared SSL on my server just for the callback function so as to be able to receive and process the messages coming from Google.
I'm new to this so forgive me if the issue has been discussed somewhere else in the forum...but I have searched and wasn't able to find an answer. 
I'm having trouble with the google payment gateway.  Everything is installed and I have a sandbox account with google.  After going through the payment process, and it acts like it should be re-directed to the google site, but a blank page shows up with http://xxxxxx.com/store/index.php?contr ... ut_process in the address bar.  Could it be that I do not have an SSL certificate set up? even for the sandbox?  any other ideas?  I've setup using the latest versions...and followed the instructions step by step...twice.

Re: https issues with cart/session

Posted: Tue Dec 09, 2008 8:21 pm
by JNeuhoff
I'm having trouble with the google payment gateway.  Everything is installed and I have a sandbox account with google.  After going through the payment process, and it acts like it should be re-directed to the google site, but a blank page shows up with http://xxxxxx.com/store/index.php?contr ... ut_process in the address bar.  Could it be that I do not have an SSL certificate set up? even for the sandbox?  any other ideas?  I've setup using the latest versions...and followed the instructions step by step...twice.
We need some more details. What is the URL of your store? I don't think its an issue with SSL.

Re: https issues with cart/session

Posted: Wed Dec 10, 2008 9:04 am
by debbie703
can someone help?

Re: https issues with cart/session

Posted: Wed Dec 10, 2008 9:46 am
by Qphoria
We are waiting for you to tell us more information. Read the post above yours