I've been wrestling with the SSL with no luck. I'm using a shared certificate for now and every time a customer signs in they get a message that the page contains secured and unsecured images. Every image is secured when I check the raw html under the covers. Also, if I choose no (do not display unsecure images) the resulting page is NOT missing any images. I'm using a javascript file for image over on the navigation and each image in the .js file is qualified with the full path https URL to each mouseover image. I'm rattled here and don't know what to do. HELP!!!!
Once I resolve this issue, I can move my digitial certificate in place but as of know, I don't see that would solve my problem. Any suggestions? Many thanks.
SSL at Verio
5 posts
• Page 1 of 1
SSL at Verio
by danmekled » Fri Mar 14, 2008 8:13 pm
- danmekled
- Posts: 4
- Joined: Fri Mar 14, 2008 8:04 pm
by danmekled » Fri Mar 14, 2008 9:38 pm
Jim,
Thanks for the reply. I've since solved that problem by moving the actual javascript to the custom registration template. We're good here.
Now I've advanced to checkout to discover the same issue. I tried removing all images from this page and still get a message. I then put all the javascript in the checkout template as I did for the registration template above but have not luck.
Below is a URL. The site is under construction migrating from MIVA so the home page is not set up. Use this link and try to check out. Thanks for the response.
http://baklava.com/store/product64.html
Thanks for the reply. I've since solved that problem by moving the actual javascript to the custom registration template. We're good here.
Now I've advanced to checkout to discover the same issue. I tried removing all images from this page and still get a message. I then put all the javascript in the checkout template as I did for the registration template above but have not luck.
Below is a URL. The site is under construction migrating from MIVA so the home page is not set up. Use this link and try to check out. Thanks for the response.
http://baklava.com/store/product64.html
- danmekled
- Posts: 4
- Joined: Fri Mar 14, 2008 8:04 pm
by Jim » Sat Mar 15, 2008 7:02 pm
I went to the site and added the product to the cart and got a warning that the ssl cert did not belong to baklava.com but belongs to *sslcert19.com (at least I think that is what it was). None of the first shopping cart screen should be secure since there is not critical data there that needs to be protected. So your template for this page needs to just use
http://baklava.com/store/shopsite-images/...
instead of
https://baklava.com/store/shopsite-images/...
This will avoid the issue on the first shopping cart screen. Note that I think it is ok to have secure images on a non-secure page and no warning would be issued except for the cert not matching the domain name for your store.
On the second shopping cart screen (billing.cgi) you have a reference to
<link rel="stylesheet" type="text/css" href="http://www.baklava.com/style3.css">
I'm not sure if that would cause a warning or not but it might.
There are a lot of links to http pages but I think those are ok.
There is also a form submit that goes to a non-secure page
<form METHOD="POST"action="http://baklava.com/cgi-bin/sc/productsearch.cgi?storeid=*1ab6811a40049d2203817ccf755a8d" style="font-family: Verdana; font-size: 8pt">
I don't know if that would cause a problem but you might try changing it to see if it makes a difference.
I also see that you are referring to both www.baklava.com and baklava.com note that these are 2 different domain names NOT the same. This might also cause a problem with a cert for your actual domain once you get the valid one. So make sure you get the cert for the appropriate domain name and change any references to the other one so you only point to one domain not two.
Also note that there are 5 or so sections in the shopping cart custom template. You need to make your secure changes in all of them exceept the [-- DEFINE SHOPPING_CART --] and [-- DEFINE THANKYOU_EMAIL --]. These two should not use secure urls.
http://baklava.com/store/shopsite-images/...
instead of
https://baklava.com/store/shopsite-images/...
This will avoid the issue on the first shopping cart screen. Note that I think it is ok to have secure images on a non-secure page and no warning would be issued except for the cert not matching the domain name for your store.
On the second shopping cart screen (billing.cgi) you have a reference to
<link rel="stylesheet" type="text/css" href="http://www.baklava.com/style3.css">
I'm not sure if that would cause a warning or not but it might.
There are a lot of links to http pages but I think those are ok.
There is also a form submit that goes to a non-secure page
<form METHOD="POST"action="http://baklava.com/cgi-bin/sc/productsearch.cgi?storeid=*1ab6811a40049d2203817ccf755a8d" style="font-family: Verdana; font-size: 8pt">
I don't know if that would cause a problem but you might try changing it to see if it makes a difference.
I also see that you are referring to both www.baklava.com and baklava.com note that these are 2 different domain names NOT the same. This might also cause a problem with a cert for your actual domain once you get the valid one. So make sure you get the cert for the appropriate domain name and change any references to the other one so you only point to one domain not two.
Also note that there are 5 or so sections in the shopping cart custom template. You need to make your secure changes in all of them exceept the [-- DEFINE SHOPPING_CART --] and [-- DEFINE THANKYOU_EMAIL --]. These two should not use secure urls.
- Jim
- Site Admin
- Posts: 4953
- Joined: Fri Aug 04, 2006 1:42 pm
- Location: Utah
SSL
by danmekled » Sun Mar 16, 2008 6:47 pm
Jim,
Thanks for the insight...I was successfully able to eliminate the nonsecure image errors from the browser by looking at the areas you suggested. I'm porting over my digital certificate from my previous host and will see what that breeds. I did make changes in the ShopSite Store preferences so that the secure checkout/cart pages will match the certificate which is www.baklava.com.
Thanks for the help!
- Dan M
Thanks for the insight...I was successfully able to eliminate the nonsecure image errors from the browser by looking at the areas you suggested. I'm porting over my digital certificate from my previous host and will see what that breeds. I did make changes in the ShopSite Store preferences so that the secure checkout/cart pages will match the certificate which is www.baklava.com.
Thanks for the help!
- Dan M
- danmekled
- Posts: 4
- Joined: Fri Mar 14, 2008 8:04 pm
5 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 31 guests