Results 1 to 10 of 10

Security error on account creation

This is a discussion on Security error on account creation within the osCMax v1.7 Installation forums, part of the osCmax v1.7 Forums category; Hey all- Helping a friend with a site, and we are running into a "cookie error" stating that cookies have ...

      
  1. #1
    New Member
    Join Date
    Jan 2004
    Posts
    10
    Rep Power
    0


    Default Security error on account creation

    Hey all-

    Helping a friend with a site, and we are running into a "cookie error" stating that cookies have to be enabled. We have set the browser to accept everything known to man, and it still gives us the error.

    Any ideas? Url of the site is http://www.mydvdepot.com

    Aodhan

  2. #2
    jpf
    jpf is offline
    osCMax Testing Team
    jpf's Avatar
    Join Date
    Sep 2003
    Location
    Manitoba, Canada
    Posts
    2,688
    Rep Power
    22


    Default

    Yea - cookies for your site is not setup correctly. Post a copy of your CONFIGURE.PHP file (less the database bit).
    JPF - osCMax Fourm Moderator - To contact, post on the forum or click here
    Try out our osCMax at: Live Catalog Demo
    Limited access Admin: Live Admin Demo
    Feel free to add products they way you want and then purchase them -=+=- Sorry nothing will be billed or shipped!

  3. #3
    New Member
    Join Date
    Jan 2004
    Posts
    10
    Rep Power
    0


    Default

    I'm a dork. Edited last post out, I'll get a copy of the config file.

  4. #4
    New Member
    Join Date
    Jan 2004
    Posts
    10
    Rep Power
    0


    Default

    Ok, here's the CONFIGURE.PHP file. I edited out the database portion, and there is a directory cookie/tmp under the root structure.

    Thanks all!

    Aodhan

    Code:
    <?php
    /*
      osCommerce, Open Source E-Commerce Solutions
      http://www.oscommerce.com
    
      Copyright (c) 2003 osCommerce
    
      Released under the GNU General Public License
    */
    
    // Define the webserver and path parameters
    // * DIR_FS_* = Filesystem directories (local/physical)
    // * DIR_WS_* = Webserver directories (virtual/URL)
      define('HTTP_SERVER', 'http://www.mydvdepot.com'); // eg, http://localhost - should not be empty for productive servers
      define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers
      define('ENABLE_SSL', false); // secure webserver for checkout procedure?
      define('HTTP_COOKIE_DOMAIN', 'www.mydvdepot.com');
      define('HTTPS_COOKIE_DOMAIN', '');
      define('HTTP_COOKIE_PATH', 'cookie/tmp');
      define('HTTPS_COOKIE_PATH', '');
      define('DIR_WS_HTTP_CATALOG', '/');
      define('DIR_WS_HTTPS_CATALOG', '');
      define('DIR_WS_IMAGES', 'images/');
      define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
      define('DIR_WS_INCLUDES', 'includes/');
      define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
      define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
      define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
      define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
      define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
    
    //Added for BTS1.0
      define('DIR_WS_TEMPLATES', 'templates/');
      define('DIR_WS_CONTENT', DIR_WS_TEMPLATES . 'content/');
      define('DIR_WS_JAVASCRIPT', DIR_WS_INCLUDES . 'javascript/');
    //End BTS1.0
      define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');
      define('DIR_FS_CATALOG', '/home/content/d/v/d/dvdepot/html/');
      define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
      define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');
    
    // define our database connection
    
    ?>

  5. #5
    jpf
    jpf is offline
    osCMax Testing Team
    jpf's Avatar
    Join Date
    Sep 2003
    Location
    Manitoba, Canada
    Posts
    2,688
    Rep Power
    22


    Default

    What you need to post is the catalog configure.php - not the admin's (but you have to change BOTH anyway)

    Look for and change to:
    define('HTTP_COOKIE_DOMAIN', 'http://www.mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'http://www.mydvdepot.com'');
    define('HTTP_COOKIE_PATH', '/cookie/tmp/');
    define('HTTPS_COOKIE_PATH', '/cookie/tmp/');
    JPF - osCMax Fourm Moderator - To contact, post on the forum or click here
    Try out our osCMax at: Live Catalog Demo
    Limited access Admin: Live Admin Demo
    Feel free to add products they way you want and then purchase them -=+=- Sorry nothing will be billed or shipped!

  6. #6
    Member
    Join Date
    Jan 2004
    Location
    edmonton, Alberta, Canada
    Posts
    62
    Rep Power
    0


    Default

    Do you also have to CHMOD the cookie path '/cookie/tmp/' ?

  7. #7
    jpf
    jpf is offline
    osCMax Testing Team
    jpf's Avatar
    Join Date
    Sep 2003
    Location
    Manitoba, Canada
    Posts
    2,688
    Rep Power
    22


    Default

    I find it odd that he wants to use a "non-standard" directory for this is normally it is /catalog/ or / (root) which normally hads the correct permissions (777 or 776). Thus if you move/change this then you have to have the same permissions on that directory also. I personally never tried moving it - so permissions should be looked at. I just assummed permissions was properly set.
    JPF - osCMax Fourm Moderator - To contact, post on the forum or click here
    Try out our osCMax at: Live Catalog Demo
    Limited access Admin: Live Admin Demo
    Feel free to add products they way you want and then purchase them -=+=- Sorry nothing will be billed or shipped!

  8. #8
    New Member
    Join Date
    Jan 2004
    Posts
    10
    Rep Power
    0


    Default

    Quote Originally Posted by jpf
    I find it odd that he wants to use a "non-standard" directory for this is normally it is /catalog/ or / (root) which normally hads the correct permissions (777 or 776). Thus if you move/change this then you have to have the same permissions on that directory also. I personally never tried moving it - so permissions should be looked at. I just assummed permissions was properly set.
    We didn't change anything other than to install it to the root directory rather than a catalog directory. Here's the modified catalog side configure.php. I still get the same error when attempting to login. Both the cookie and tmp directories have permissions of 776.

    Code:
    <?php
    /*
      osCommerce, Open Source E-Commerce Solutions
      http://www.oscommerce.com
    
      Copyright (c) 2003 osCommerce
    
      Released under the GNU General Public License
    */
    
    // Define the webserver and path parameters
    // * DIR_FS_* = Filesystem directories (local/physical)
    // * DIR_WS_* = Webserver directories (virtual/URL)
      define('HTTP_SERVER', 'http://www.mydvdepot.com'); // eg, http://localhost - should not be empty for productive servers
      define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers
      define('ENABLE_SSL', false); // secure webserver for checkout procedure?
      define('HTTP_COOKIE_DOMAIN', 'http://www.mydvdepot.com');
      define('HTTPS_COOKIE_DOMAIN', '');
      define('HTTP_COOKIE_PATH', '/cookie/tmp');
      define('HTTPS_COOKIE_PATH', '');
      define('DIR_WS_HTTP_CATALOG', '/');
      define('DIR_WS_HTTPS_CATALOG', '');
      define('DIR_WS_IMAGES', 'images/');
      define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
      define('DIR_WS_INCLUDES', 'includes/');
      define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
      define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
      define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
      define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
      define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');
    
    //Added for BTS1.0
      define('DIR_WS_TEMPLATES', 'templates/');
      define('DIR_WS_CONTENT', DIR_WS_TEMPLATES . 'content/');
      define('DIR_WS_JAVASCRIPT', DIR_WS_INCLUDES . 'javascript/');
    //End BTS1.0
      define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');
      define('DIR_FS_CATALOG', '/home/content/d/v/d/dvdepot/html/');
      define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
      define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');
    
    ?>

  9. #9
    jpf
    jpf is offline
    osCMax Testing Team
    jpf's Avatar
    Join Date
    Sep 2003
    Location
    Manitoba, Canada
    Posts
    2,688
    Rep Power
    22


    Default

    Im bad....


    define('HTTP_COOKIE_DOMAIN', 'http://www.mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'http://www.mydvdepot.com'');

    s/b
    define('HTTP_COOKIE_DOMAIN', 'mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'mydvdepot.com'');
    or try:
    define('HTTP_COOKIE_DOMAIN', 'www.mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'www.mydvdepot.com'');
    JPF - osCMax Fourm Moderator - To contact, post on the forum or click here
    Try out our osCMax at: Live Catalog Demo
    Limited access Admin: Live Admin Demo
    Feel free to add products they way you want and then purchase them -=+=- Sorry nothing will be billed or shipped!

  10. #10
    Anonymous
    Guest


    Default

    Quote Originally Posted by jpf
    Im bad....


    define('HTTP_COOKIE_DOMAIN', 'http://www.mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'http://www.mydvdepot.com'');

    s/b
    define('HTTP_COOKIE_DOMAIN', 'mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'mydvdepot.com'');
    or try:
    define('HTTP_COOKIE_DOMAIN', 'www.mydvdepot.com');
    define('HTTPS_COOKIE_DOMAIN', 'www.mydvdepot.com'');
    When I change it to either of the options, links come up as "http://www.mydvdepot.com/mydvepot.com/login.php". Only with "http://www.mydvdepot.com" as the cookie domain do the links come up correctly, but then I get the cookie error.

    Aodhan

Similar Threads

  1. Edit the account creation email
    By adamr415 in forum osCMax v2 Features Discussion
    Replies: 1
    Last Post: 10-04-2005, 06:29 PM
  2. Adding fields to account creation page
    By adamr415 in forum osCmax v2 Customization/Mods
    Replies: 1
    Last Post: 10-03-2005, 11:05 PM
  3. emails not sent after new account creation
    By Anonymous in forum osCMax v1.7 Installation
    Replies: 1
    Last Post: 11-23-2003, 11:55 AM
  4. Application Hangs During Account Creation Submit
    By maxwelltl in forum osCmax v1.7 Discussion
    Replies: 1
    Last Post: 09-24-2003, 11:54 AM
  5. Required Option at account creation
    By martva in forum osCommerce 2.2 Modification Help
    Replies: 1
    Last Post: 06-02-2003, 03:35 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •