Secure site help

[CMWM]

At the risk of being chastised - I ask the following question. I have read every string with ssl or https in it and have not had the answer yet. I have adjusted tweaked broken my cart fixed it from backup at least a hundred times looking for this.

I have secured my cart and set things up. They work well except that, many of the links take a person back to the http: instead of https: This happens in the cart contents, what's new, new products, information, and bestsellers. When sent for checkout or make an account it is secured. How do I change it so that it is all secure?

Thanks,
John

[jpf]

OSC as a default only stays in secure mode when required - ie: accepting payment, check out process, entering/changing account info/password etc...

This is normal behavoir..... As HTTPS does cause a bit of work on the server side to encript the data. You could put your http server to be "https://yoursite.com" which would keep them in secure mode for the whole visit. However this is not really needed and put extra load on the server to encript a data stream that does not have to be.

But the choice is yours....

change in configure.php so both http and https matches:

define('HTTP_SERVER', 'https://yourscecurewebsite.com')
define('HTTPS_SERVER', 'https://yourscecurewebsite.com')

You can also change this seaming how you would allways be in secure mode:
define('ENABLE_SSL', false); // secure webserver for checkout procedure?

You can also set .htaccess to force http lookup to https lookup (but that is a whole other story).

[CMWM]

Thank you very much that answers what I needed. I will take your comments before I switch to fully protect the site.

Again, Thanks

[michael_s]

John,

Putting your site entirely in HTTPS is really incorrect usage of SSL and should be avoided. It slows down the server, connections, and on busy sites can really increase server load.

There is no need to use ssl anywhere on the catalog, other than the user login and checkout. I advise you to keep it only to where it is needed.