[ic] SSL - Cart Drop

Anton van de Plas interchange-users@lists.akopia.com
Sun Jun 17 18:55:00 2001 

To John and the rest of the list,

You gave me some advise this week about the SSL cart drop on the IC list and
based upon that, I have made the following changes to my catalog.cfg


AlwaysSecure   order ord/checkout ord/basket new_account login logout
change_password process customerservice


I added "new_account" to the list, otherwise, a new account created, would
not work with the secure pages.

Now this solution has created a new problem. It has made my login page etc.
in the Administrative area secure. This has as result that after my login, I
cannot access certain areas of the admin area, since the "cookies" cannot be
read by my nonsecure server. Do you have a solution for this. For me, the
admin area does not have to be secure at all.

Thanks

Anton


-----Original Message-----
From: interchange-users-admin@developer.akopia.com
[mailto:interchange-users-admin@developer.akopia.com]On Behalf Of John
Beima
Sent: Friday, June 15, 2001 3:02 AM
To: interchange-users@developer.akopia.com
Subject: RE: [ic] SSL - Cart Drop


Basicly any page that doesn't go though the SSL domain wont have your basket
or
session info... You did put my line in as one long line with spaces
seperating
everthing right? Send me your catalog.cfg file and I will take a look at
it...

John


Quoting Anton van de Plas <avdplas@addaction.com>:

> John:
>
> I have implemented the same codes as you describe below. Now it works. I
> am
> not losing the cart contents when going to the SSL check out. But when I
> log
> in and then return to the home page to shop, I am logged out and loose
> the
> contents of the cart, since it is a different domain.
>
> Any suggestions?
>
> Anton
>
> -----Original Message-----
> From: interchange-users-admin@developer.akopia.com
> [mailto:interchange-users-admin@developer.akopia.com]On Behalf Of John
> Beima
> Sent: Thursday, June 14, 2001 8:49 PM
> To: interchange-users@developer.akopia.com
> Subject: Re: [ic] SSL - Cart Drop
>
>
> G'Day Jeff,
>
> Get ride of both of those cookie directives, and change the AlwaysSecure
> Line in
> your catalog.cfg file to:
>
> AlwaysSecure   order ord/checkout ord/basket login logout
> change_password
> process customerservice
>
> Then go into your admin pages and turn the UI secure server on as
> well...
>
> And you problem will be solved...
>
> John Beima
>
>
> Quoting Jeff Worsley <jeffw@contactdesigns.com>:
>
> > Ok I will first start by saying that I know this is a common question.
> > Here is the situation, When customer goes to SSL basket, interchange
> > sometimes issues a new session... I have found and made the fix awhile
> > back and have submited the changes.
> > INTERCHANGE 4.6.5 FILE bin/interchange:
> >
> > Line #1420: $Vend::Session->{shost}=$CGI::secure
> > this should be: $Vend::Session->{shost}=$CGI::remote_addr
> >
> > i was thinking to my self, if you read that whole function... why the
> > hell would you set $Vend::Session->{shost} to $CGI::Secure if
> > $CGI::Secure had no value to begin with.
> >
> > anyway I then had to add to catalog.cfg:
> > Cookies Yes
> > CookieDomain .securedomain.com .nonsecuredomain.com
> >
> > well the funnything is that this works 100% when the .securedomain.com
> > is first then the .nonsecuredomain.com... however interchange declares
> a
> > cookie error and says that I will loose all cart items from non to
> > secure... this is not true, the cookies are writen like they should be
> > (even to a virgin computer). NOW THE QUESTION: Why would this make
> > interchange think there is an error? is there a fix to the code to
> make
> > it not error? I can remove the stuff out of the templates, however I
> > what interchange to be happy with the fix and not error at all to
> begin
> > with.
> >
> > ~Jeff
> > ContactDesigns.com
> > _______________________________________________
> > Interchange-users mailing list
> > Interchange-users@lists.akopia.com
> > http://lists.akopia.com/mailman/listinfo/interchange-users
> >
>
>
>
> John Beima
> jbeima@palb.com, support@alocalagent.com, and support@alocalchurch.com
>
> P.A.L.B. Systems - Phone: (780)451-1086 - Fax: (780)447-4760
> 11639-122 Street, Edmonton, Alberta, Canada, T5M 0B6
>
> Affordable Web Pages - Phone: (888)932-9990 - Fax: (256)351-7297
> 2713B Spring Place SW, Decatur, Alabama, United States, 35603
> _______________________________________________
> Interchange-users mailing list
> Interchange-users@lists.akopia.com
> http://lists.akopia.com/mailman/listinfo/interchange-users
>
> _______________________________________________
> Interchange-users mailing list
> Interchange-users@lists.akopia.com
> http://lists.akopia.com/mailman/listinfo/interchange-users
>



John Beima
jbeima@palb.com, support@alocalagent.com, and support@alocalchurch.com

P.A.L.B. Systems - Phone: (780)451-1086 - Fax: (780)447-4760
11639-122 Street, Edmonton, Alberta, Canada, T5M 0B6

Affordable Web Pages - Phone: (888)932-9990 - Fax: (256)351-7297
2713B Spring Place SW, Decatur, Alabama, United States, 35603
_______________________________________________
Interchange-users mailing list
Interchange-users@lists.akopia.com
http://lists.akopia.com/mailman/listinfo/interchange-users