PDA

View Full Version : SSL and nonSSL running different root folders



zinc
03-14-2004, 07:37 AM
Hi,

My web hosting company gave me two folders to upload my files in ftp: httpdocs and httpsdocs. As it is a shared server and I have a shared SSL certificate, they say I have to put my SSL needed files in httpsdocs folder. I searched some forums and found out that the best solution to run the site is duplicating the files for both folders. But I'm still not sure about what to do for installation:

Should I first upload the files and setup MAX from one of the folders and then duplicate the post set up site to the other folder or should I upload the files in both folders and run set up?

I'm confused and looking forward to your advice.

Thank you.

mrshlomi
03-14-2004, 07:33 PM
I think it all goes into the httpdocs and you link the cert to https (I think)

fuzzyphil
05-21-2005, 05:16 AM
I too have the same setup whereby you have a non secure and secure setup. What is proving to be a real pain is uploading the same images to both folders so that all images can be displayed on all pages.
Does anybody know of a contribution that could automate the process or even explain how to configure dreamweaver or cuteftp to automate th job.
Any advise gratefully received.

P. :roll:

michael_s
05-21-2005, 09:27 AM
The product images are not needed in your https directory. Only the images that will be called via https: buttons, graphics, and only those needed for the checkout process and customer login areas.

It is actually pretty easy, and once set up, you never have to mess with it again...

nemail
05-23-2005, 06:02 AM
I am in a similar situation, where I had the complete catalog working on a shared secure server, but a site home page on a non-secure server. I had been advised that this isn't a good idea, because it's a barrier to search engine robots.

For simplicity, I've just copied the complete catalog onto the non-secure server and modified the configuration.php files for catalog and admin to suit.

Everything seems OK on testing, and it appears to go to the secure server at the appropriate pages. So far so good.
I had been planning to leave only the essential components (whatever they are) on the secure server, to avoid duplication, but I happened to notice when 'mousing-over' other links on a secure page (for example, to other products/bestsellers etc, as a customer might do) that the URL in the browser status bar showed as the one for the secure server and not the non-secure one. Would this mean that, while on a secure page, the browser would continue to look for product images etc on the secure site, or would I be safe to ignore this?

Also, can anyone advise on a list of essential files which must be left on the secure server?

By the way, does anyone reckon my previous configuration would've stopped search engines? I had set it up that way for customer 'peace of mind' with their whole shopping experience being on a secure server.

Thanks for any help.