A developer made this change to me:
I'm not very happy when I touch the original opencart files and I would like to know from someone (that is not the developer) if this change affects something about the safety of opencart ...
2. if you feel unsafe, simply revert this change
3. why is this chnage made this way
4. what is the reason for this change > because
5. really not required
This all leads me to the assumption that this developer does not really know how OpenCart works.
Beside this: no. security of Opencart is not touched by this change.
Forum Rules [en]: viewtopic.php?f=176&t=200480
Commercial Request: viewforum.php?f=88
Dedicated Support: https://dedicated.opencart.com/
Marketplace Support: https://www.opencart.com/index.php?rout ... rt/support
I had purchased an extension from this developer (on the opencart marketplace). He had to modify the extension to make it compatible with the Journal 3 theme.
He has modified the files of his extension and he modified the file system/library/url.php
he wrote me this (I do not understand what it means):
"Also, I had to edit system/library/url.php in order to force SSL. This is needed for the proper functioning of the module since the XHR was loaded from non-secure URL. I made this as one-time free customization in order to force SSL on your website. This will be beneficial for all our website content since it will be loaded via HTTPS"
is a known developer and I have purchased other extensions from him ... only I do not understand the reason for this change ... for this reason I asked here on the forum ... as I said: I do not really like editing files natives of opencart.
don't know, as it looks, you'll have to depend on others, like it or not.
The Mod Seller changed some Code, to 'force' HTTPS somewhere, and
he told you about it. But if you don't know, what that means, just ask
our Friend Google, and you will find whole bunches of basic Information
on SSL and HTTPS. So, just be happy, that he made it work in secure Mode.
And other Matters might also be of highest importance, when it comes to
Security. But if one is not familiar with Servers and OC Software, one needs
a trustworty Tech-Guy, like in any other Business too, it's as easy as that.
This Place here will not be of much help, neither, for taxing someone's work,
nor, to make your Installation safe and secure. That's your Job, or then, get
it made by a Pro. In real Business and Life, it's the only way to succeed.
.... I do not really like editing files natives of opencart.
That's your point of view. But OC-Files won't be of any use anymore anyway,
after one updates to another Version again, it therefore makes not much sense,
to worry about such. And the chances, that something else will no longer work,
because of such doings, are less than 0.1 percent, according to my experience.
Good Luck, no offense, it's not meant personally ...
I'm no longer quite active at the Forum, to reach me, better contact: email@example.com
My free Opencart LIGHT 126.96.36.199 Code is available on GitHub soon,
a Demoversion of it can be seen in Action here: http://www.bigmax.ch
930+ FREE OC Extension-Repositories - from OC v.1.5.x up, on the
world's largest OC-related Github Site: https://github.com/IP-CAM
if there are no problems for the safety of opencart I leave it. I tried to restore it and everything works equally ... for this reason I was curious what it could serve ...
MHC Web Design
Override Engine * Integrated VQMod * Unused Images Manager * Instant Option Price Calculator * TrustPilot Reviews * Google Rich Snippets * Google Tag Manager * Export/Import Tool * Template Switcher PHP/Twig
Users browsing this forum: No registered users and 2 guests