When I'm browsing the normal site all goes well (http://mysite.com), when I click on My Account it will switch to https://hostingsite/mysitesharedfolder/, this also works and I then have ssl. But when I click any other link eg. blog forum, it won't switch back to http://mysite.com it will only change to http://hostingsite/mysitesharedfolder/. So then I'm stuck in a hosted shared folder with no ssl.
Is there something else I need to change. Is the web.comfig ment to be different in both folders nonssl and ssl. Any input would be great.
I think nopCommerce need to create a function for resolving URLS when in a shred environment.
Instead of Page.RespolveURL is should be Nop.ResolveURL which has added logic to see if the user is in the shared location, if they are then append the domain name to the links.
In the end I had no one else that had any insite. I'm sure there probably is an easy way using a small script to check if the page is using https and then redirect but in the end I just got a static ip and my own ssl cert which saved any programming work.
If you find a fix for it then please share.
Here are some .net ideas http://www.codeproject.com/KB/web-security/WebPageSecurity_v2.aspx?msg=3348834
and here are some javascript ideas http://blogs.snapsis.com/PermaLink,guid,57722651-1215-4ef1-b021-f06a288fac10.aspx
Then in CommonHelper.cs amended GetStoreHost(bool useSsl)
from this: string result = "http://" + ServerVariables("HTTP_HOST"); to: string result = ConfigurationManager.AppSettings["StoreURL"];
The outcome was that after SSL authenticated the user, then they click a link they got sent back to the no ssl domain. The way it is setup in Nop right now. I ended up being sent to http://foo.securessl.com (not https) which did not work.