Hi
i am wondering, when i install a SSL certificate, using the default source code, which pages are secured? (ie, checkout, admin?).
Also can the non-encrypted pages be at www.xxx.com, and the secured pages from secure.xxx.com ? how would i go upon doing this?
SSL Secured Pages
MVP
Certified Developer
- 663
- 6825
- 11/11/2010
- Bangladesh
If you install ssl certificate and enable ssl ( admin -> configuration->stores -> edit -> enabled ssl) usually all pages those have 'form' input like cart, checkout, login, registration, review, admin area come with https
The pages those have no form input like home, product list, product details pages come with http
FYI: we can enable SSL for the entire nopcommerce site by setting up
SecuritySettings.ForceSslForAllPages = true
To do that go to
Admin --> Configuration --> Settings ---> All Settings (Advanced)
Click the funnel type icon next to 'Setting Name' column. Using that filter, filter for "SecuritySettings.ForceSslForAllPages" and update the setting.
The pages those have no form input like home, product list, product details pages come with http
FYI: we can enable SSL for the entire nopcommerce site by setting up
SecuritySettings.ForceSslForAllPages = true
To do that go to
Admin --> Configuration --> Settings ---> All Settings (Advanced)
Click the funnel type icon next to 'Setting Name' column. Using that filter, filter for "SecuritySettings.ForceSslForAllPages" and update the setting.
MVP
Silver Solution Partner
Certified Developer
- 2639
- 42712
- 1/21/2010
- United States
Bosch88 wrote:
Hi Bosch88,
I am afraid you will have to revert these settings directly in the database, as you will not be able to login to the admin without having an SSL certificate installed. So just open your database and search in the Store table for your store and edit the SslEnabled column with value of false. Do the same with the Settings table and search for a setting with name SecuritySettings.ForceSslForAllPages .
Hope that helps!
Hello, i just did the SecuritySettings.ForceSslForAllPages = true
and
in admin enabled SSL.
Now I cant open the website and admin panel anymore.
So I cant undo this setting, I think. Please help
and
in admin enabled SSL.
Now I cant open the website and admin panel anymore.
So I cant undo this setting, I think. Please help
Hi Bosch88,
I am afraid you will have to revert these settings directly in the database, as you will not be able to login to the admin without having an SSL certificate installed. So just open your database and search in the Store table for your store and edit the SslEnabled column with value of false. Do the same with the Settings table and search for a setting with name SecuritySettings.ForceSslForAllPages .
Hope that helps!
MVP
Silver Solution Partner
Certified Developer
- 2639
- 42712
- 1/21/2010
- United States
Bosch88 wrote:
Hi,
If your site is hosted you should reach your database either through your control panel or through a remote connect using SQL Server Management Studio for example.
If you are running the site locally you should access your database through sql server management studio.
Hope that helps!
Thank you for these fast replies.
I wish i did not touched that setting.
Were can i find this database :')
I wish i did not touched that setting.
Were can i find this database :')
Hi,
If your site is hosted you should reach your database either through your control panel or through a remote connect using SQL Server Management Studio for example.
If you are running the site locally you should access your database through sql server management studio.
Hope that helps!
MVP
Certified Developer
- 663
- 6825
- 11/11/2010
- Bangladesh
Bosch88 wrote:
You may need to restart application pool
Thank you for these fast replies.
I wish i did not touched that setting.
Were can i find this database :')
I wish i did not touched that setting.
Were can i find this database :')
update [dbo].[Setting]
set Value='false'
where name = 'SecuritySettings.ForceSslForAllPages'
update [dbo].[Store]
set SslEnabled = 0
You may need to restart application pool