Hi All,
I have trauled almost every thread on SSL in this forum and have found nothing to help me to get SSL to work on my website correctly.
I have a dedicated SSL installed for my hosting and the SSL certificate is valid and working correctly. The config.php in admin is set accordingly and my admin area is working fine with https://.
The problem I am experiencing is that whenever I turned on ssl in the server settings in my admin area, the login, account and checkout pages are inactive/disabled (i.e. it does nothing when clicked on). When I switched ssl off, all the pages mentioned start to work as expected.
Can someone please point me in the right direction to solve this issue? Any help would be very much appreciated!
Thanks,
TTN
Hi,
The link is http://www.ttjewellers.co.uk
You will see all the links and tabs on all the pages working as expected. Let me know when you're ready and I will switch ssl on so you can see where the problem is.
Thanks,
TTN
The link is http://www.ttjewellers.co.uk
You will see all the links and tabs on all the pages working as expected. Let me know when you're ready and I will switch ssl on so you can see where the problem is.
Thanks,
TTN
Many thanks for the link.
A couple of things are apparent -
1. When I click between account and home, or click login, the site sometimes seems to freeze up. That's while SSL is not enabled. I also got a server 500 error at one point.
The problem is not consistent - and I'm no coding jock - so not sure what that's about at this stage. But it's not the SSL cert.
2. There is some javascript at the top of the page, which looks as though it disables right-click functions. This makes troubleshooting a little harder
- maybe it is also affecting how the page runs. It might be worth commenting this out and see if it makes a difference.
This is very much a preliminary look though, hope someone else can take a look as well.
A couple of things are apparent -
1. When I click between account and home, or click login, the site sometimes seems to freeze up. That's while SSL is not enabled. I also got a server 500 error at one point.
The problem is not consistent - and I'm no coding jock - so not sure what that's about at this stage. But it's not the SSL cert.
2. There is some javascript at the top of the page, which looks as though it disables right-click functions. This makes troubleshooting a little harder
- maybe it is also affecting how the page runs. It might be worth commenting this out and see if it makes a difference. This is very much a preliminary look though, hope someone else can take a look as well.
Hi Moggin,
Thanks very much for your inital effort - it's good to know someone out there is willing to help!
The issues you'd experienced while accessing our site has been intermittent since the hosting was upgraded a few weeks ago. I am hoping that the hosting company will have these issues looked into soon!
I am going to switch on SSL now and if you can take a look after I have done this and see what you think.
Thanks,
TTN
Thanks very much for your inital effort - it's good to know someone out there is willing to help!
The issues you'd experienced while accessing our site has been intermittent since the hosting was upgraded a few weeks ago. I am hoping that the hosting company will have these issues looked into soon!
I am going to switch on SSL now and if you can take a look after I have done this and see what you think.
Thanks,
TTN
Ok, it seems to be running more smoothly now. I'm seeing a couple of problems, though not the freezing problem that was there earlier. These are:
1. With SSL turned on, the page is not encrypted at all. If you 'view source' on a secure page, the base href is still showing as http: when it should be https:
This is rare, but the few times it's been reported on this forum, it's been a server level issue which might require help from your host. For example: http://forum.opencart.com/viewtopic.php?t=32779#p159654
2. The account tab has picked up some extraneous code so you reach https://www.ttjewellers.co.uk/www.ttjew ... ount/login when you click it - hence you end up with 'page not found'. Could be some kind of rewrite rule in the .htaccess? The source code looks OK.
3. When you click the checkout tab, the checkout page isn't secured at all.
Hope that helps shed some light to start with. Strangely, the one thing I don't see is the problem initially reported
1. With SSL turned on, the page is not encrypted at all. If you 'view source' on a secure page, the base href is still showing as http: when it should be https:
This is rare, but the few times it's been reported on this forum, it's been a server level issue which might require help from your host. For example: http://forum.opencart.com/viewtopic.php?t=32779#p159654
2. The account tab has picked up some extraneous code so you reach https://www.ttjewellers.co.uk/www.ttjew ... ount/login when you click it - hence you end up with 'page not found'. Could be some kind of rewrite rule in the .htaccess? The source code looks OK.
3. When you click the checkout tab, the checkout page isn't secured at all.
Hope that helps shed some light to start with. Strangely, the one thing I don't see is the problem initially reported
Hi Moggin,
That's very useful information!
Which browser are you using? If it's Firefox or Safari, then the issues are as you have highlighted. But if you are using IE, then you can see the problem as I have reported at the outset.
If I set, in the admin area, the 'Store URL' to https://www.ttjewellers.co.uk then https works fine but everthing is encrypted which isn't a solution at all.
Do you think the problem I'm experiencing could be the templates? As you can see I'm not using the default.
If you can shed any more light when you can think of one, I would very much appreciate it.
Thanks,
TTN
That's very useful information!
Which browser are you using? If it's Firefox or Safari, then the issues are as you have highlighted. But if you are using IE, then you can see the problem as I have reported at the outset.
If I set, in the admin area, the 'Store URL' to https://www.ttjewellers.co.uk then https works fine but everthing is encrypted which isn't a solution at all.
Do you think the problem I'm experiencing could be the templates? As you can see I'm not using the default.
If you can shed any more light when you can think of one, I would very much appreciate it.
Thanks,
TTN
Good call TTN! I check in Chrome, then Firefox, and don't go near IE till I absolutely have to 
While there may be minor issues with the template, the main problem seems more fundamental.
The base href should resolve to https: when you switch on SSL in the back office (1.4x series only - the 1.5x series is slightly different). It isn't doing that for some reason, so none of your page elements is secured.
You could try this fix http://forum.opencart.com/viewtopic.php ... 35#p148725 - see if it helps. The problem there was similar. If it doesn't help, a word with your host might be in order.
There may be some more tweaking needed after that, but that's the main issue as far as I can see.
While there may be minor issues with the template, the main problem seems more fundamental.
The base href should resolve to https: when you switch on SSL in the back office (1.4x series only - the 1.5x series is slightly different). It isn't doing that for some reason, so none of your page elements is secured.
You could try this fix http://forum.opencart.com/viewtopic.php ... 35#p148725 - see if it helps. The problem there was similar. If it doesn't help, a word with your host might be in order.
There may be some more tweaking needed after that, but that's the main issue as far as I can see.
runneing oc competely under ssl is a harsh job but it can be done (at least i got it working)
i did a check on your site using this usefull website http://www.whynopadlock.com/
It gives in great detail where the problems are and they are in your skin
A good fix is to force your website to run under SSL bij adding this to your htaccess file
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.ttjewellers.co.uk/$1 [R=301,L]
make sure the config files are set correct and the correct ssl url are in place.
i did a check on your site using this usefull website http://www.whynopadlock.com/
It gives in great detail where the problems are and they are in your skin
A good fix is to force your website to run under SSL bij adding this to your htaccess file
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.ttjewellers.co.uk/$1 [R=301,L]
make sure the config files are set correct and the correct ssl url are in place.
Koeltechnische deurrubbers eenvoudig online op maat bestellen.
Alle niet stekplichtige onderdelen zoals scharnieren, sloten, randverwarming en verlichting voor alle typen koelingen en vriezers.
https://koelcel-onderdelen.com
Why not keep it simple - that you have SSL installed but it isn’t securing any of the page content. The script, Opencart, runs on other servers without incident, and can they help out.TTN wrote:Hi Moggin,
This is going to sound really silly but what questions should I put to the hosting company?
I have tried following the threads you suggested but to no avail - thanks anyway though!
TTN
You may or may not get a sensible answer, depending on your host, but it's a place to start. Good hosts can often spot a problem others can't.
There is nothing to stop you trying the default template though, just to see whether it changes anything. The template doesn't usually affect the base href but anything is worth a try.
Hi Everyone!
I need a little help!
I'd like my whole OpenCart shop to be SSL protected, but here is a little problem.
I using OpenCart 1.4.9.6. and SEO enabled.
I put this code the the .htaccess file:
It works fine, I got all pages https secured, BUT... it messing to the SEO URL-s :-(
Like:
SEO URL before the forced SSL:
http://www.mywebshop.com/goodstuff.html
and after forcing the SSL by the code:
https://www.mywebshop.com/index.php?_route_=goodstuff.html
Is anybody knows, how to fix this problem?
Thank You very much!
I need a little help!
I'd like my whole OpenCart shop to be SSL protected, but here is a little problem.
I using OpenCart 1.4.9.6. and SEO enabled.
I put this code the the .htaccess file:
Code: Select all
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
It works fine, I got all pages https secured, BUT... it messing to the SEO URL-s :-(
Like:
SEO URL before the forced SSL:
http://www.mywebshop.com/goodstuff.html
and after forcing the SSL by the code:
https://www.mywebshop.com/index.php?_route_=goodstuff.html
Is anybody knows, how to fix this problem?
Thank You very much!
delete
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
replace with
RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.yourdomain.com/$1 [R=301,L]
make sure it is before all the other rewrite rules in the htaccess
It redirects all incomming port 80 (http) requests to https. then the seo url rewrites are applied
Works for me
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
replace with
RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^(.*)$ https://www.yourdomain.com/$1 [R=301,L]
make sure it is before all the other rewrite rules in the htaccess
It redirects all incomming port 80 (http) requests to https. then the seo url rewrites are applied
Works for me
Koeltechnische deurrubbers eenvoudig online op maat bestellen.
Alle niet stekplichtige onderdelen zoals scharnieren, sloten, randverwarming en verlichting voor alle typen koelingen en vriezers.
https://koelcel-onderdelen.com
Hi,
This is the response I got from my hosting company:
'The problem is with the way the third party software is working with the Certificate.
Any server side amendments that are needed to allow your scripts to run that the software vendor advise our engineers will then consider implementing server side for you.'
I think it's a dead-end!
Regards,
TTN
This is the response I got from my hosting company:
'The problem is with the way the third party software is working with the Certificate.
Any server side amendments that are needed to allow your scripts to run that the software vendor advise our engineers will then consider implementing server side for you.'
I think it's a dead-end!
Regards,
TTN
Hmmm, not too promising at first glance.TTN wrote:Hi,
This is the response I got from my hosting company:
'The problem is with the way the third party software is working with the Certificate.
Any server side amendments that are needed to allow your scripts to run that the software vendor advise our engineers will then consider implementing server side for you.'
I think it's a dead-end!
Regards,
TTN
Had to read it a couple of times but it seems to translate as: - yes, there is some server-side incompatibility; and if you need something changed, we'll see what we can do. Fair enough really. That seems to leave you with options such as: 1) some help fixing or pinpointing whatever needs changing in the script - probably paid help ; 2) a different cart (shhh) , which does work on their servers, 3) a different host for your site, 4) any other ideas...?
if you check your site under ssl you will see that all pictures are sent through http resulting in not working correct under ssl.
check and correct your config files in both the root and admin area.
make sure your ssl path is correct.
if you cant get it working give me a pm
regards victor
check and correct your config files in both the root and admin area.
make sure your ssl path is correct.
if you cant get it working give me a pm
regards victor
Koeltechnische deurrubbers eenvoudig online op maat bestellen.
Alle niet stekplichtige onderdelen zoals scharnieren, sloten, randverwarming en verlichting voor alle typen koelingen en vriezers.
https://koelcel-onderdelen.com
Thank you Moggin to you for trying - I really appreciated it! I think I will plod on and see whether I can find a work-around.
Victor - I have checked thoroughly all config files both in root and admin areas and they are set exactly how they should be. The issue with my site is that whenever ssl is turned on, the 'Login' and 'Account' tabs are inactive i.e. nothing happens when you click on them. All other tabs or links work fine for the rest of the site.
If you hover the mouse over the tabs you can see it pointing at https://www.ttjewellers.co.uk/index.php ... ount/login for example, but when you click on the tab nothing happens at all.
But if I set the URL to https://www.ttjewellers.co.uk under General Server Setting in admin, the whole site runs on https without a hitch - really strange!
I will switch ssl on now for my site and you can have a look for yourself.
Thanks,
TTN
Victor - I have checked thoroughly all config files both in root and admin areas and they are set exactly how they should be. The issue with my site is that whenever ssl is turned on, the 'Login' and 'Account' tabs are inactive i.e. nothing happens when you click on them. All other tabs or links work fine for the rest of the site.
If you hover the mouse over the tabs you can see it pointing at https://www.ttjewellers.co.uk/index.php ... ount/login for example, but when you click on the tab nothing happens at all.
But if I set the URL to https://www.ttjewellers.co.uk under General Server Setting in admin, the whole site runs on https without a hitch - really strange!
I will switch ssl on now for my site and you can have a look for yourself.
Thanks,
TTN
Who is online
Users browsing this forum: No registered users and 29 guests
