How can I enable SSL for the entire nopcommerce site?

7 年 前
Thanks for posting the web.config rewrite rule MichaelCommerce.  Just what I was looking for!
6 年 前
I was having the same issue and then I realised that there are individual store settings so I looked in there and bingo!! There it was and then it made all sense. Some stores may not have SSL so this option was there allow that flexibility.

So what worked for me Admin Section --> Configuration --> Stores (NopCommerce version 3.40)
6 年 前
magefesa wrote:
How can i see that sSL is working ? I have SSL installed on my site (ARVIXE) and I ve checked the Force SSL on all site, but i don't see any lock on the webaddress of chrome.

Please could you help me ?


Did you figure out the solution?

You can check if your pages are using SSL by looking at the url. The URL changes from http to https on secured pages like "Login" page.

You can also check the SSL installation for your domain name by online tool like this: https://ssltools.websecurity.symantec.com/checker/views/certCheck.jsp
6 年 前
Hello,
I am using nopcommerce 3.4.
I want to enable ssl on pages like login, order detail,etc
I have enables ssl from admin side Just set "SecuritySettings.ForceSslForAllPages" setting to "true" but It have https on all pages.
Please suggest what to do?

Thank you.
6 年 前
Hello,
I am using nopcommerce 3.4.
I want to enable ssl on pages like login, order detail,etc
I have enables ssl from admin side Just set "SecuritySettings.ForceSslForAllPages" setting to "true" but It have https on all pages.
Please suggest what to do?

Thank you.
6 年 前
vidhi wrote:
Hello,
I am using nopcommerce 3.4.
I want to enable ssl on pages like login, order detail,etc
I have enables ssl from admin side Just set "SecuritySettings.ForceSslForAllPages" setting to "true" but It have https on all pages.
Please suggest what to do?

Thank you.


Try restarting an app.
5 年 前
I set our site to all SSL. Doing it to get better ranking on Google.

Everything works except my home page. Looked at page source and found <img src="http://pics.ebaystatic.com/aw/pics/s.gif"

What is this and how do I get it to pull in HTTPS.

Thanks in advance.

Tracy
5 年 前
hitnet wrote:
I set our site to all SSL. Doing it to get better ranking on Google.

Everything works except my home page. Looked at page source and found <img src="http://pics.ebaystatic.com/aw/pics/s.gif"

What is this and how do I get it to pull in HTTPS.

Thanks in advance.

Tracy


Try changing src link to <img src="//pics.ebaystatic.com/aw/pics/s.gif"> and it should work fine. However make sure ebay url has support for SSL urls, otherwise it won't work.
5 年 前
That was changed in a recent version because there is no reason for the other pages throughout the site to use an SSL as there is nothing that needs to be encrypted on them. It can also speed up the speed of the site along with helping with SEO problems that can be caused by having an https and http version of a page. If you want to change that I am not sure what is entailed.
3 年 前
I was having this issue also and I did use (and was happy-ish) with IIS rewrite also.

But I thought it MUST work because EVERYONE needs this functionality.

Indeed it does! and the info is (scatterd) in this post, but I'm going to try to bring it together.

1. if you just want SSL/HTTPS on "secure" pages (login, CCard, etc) then all you need to do is:
   a) have an SSL certificate you can use for your domain and get it on the server somehow...
   b) in nopCommerce admin you need to go to "Edit Store Details (Admin > store > edit > [store#])
   c) here you will see "store URL" this can be "http://www.mysweetshop.com" or whatever - I don't hink it HAS to have the "HTTP" bit, but the "? example" shows it so whatever I put it in there also...
   d) then IF you have your certificate installed and setup you can tick the "SSL enabled" AND
   e) put the SecureURL for use in the secure pages - but if its just "HTTPS://www.mysweetshop.com", I think the system can add the "S" when needed - its only for some configurations with maybe shared SSL certificats that you might need this? (yes I'm guessing half of this).

2. if you want SSL "EVERYWHERE" (which is currently considered "better practice" by Google at least) then this is when you have to go -> Admin area settings and set SSL for every site under Admin/Config/General and Miscellaneous Settings >> tab: Security settings >> check the "Force SSL for all pages" - you need to do this ON TOP of #1 setup, so that the site knows what the SSL setup is, so I think this is what confuses folks (me included) that this appears to be a master control, but you MUST setup the SSL for the STORE first.

Hope this helps someone.
(and correct me if I've got something wrong or unclear)

-------------------------

What I would like to know if someone has more insight is if/how you can setup multiple SSLs (eg: if I have three stores with totally different domains) whats the deal for setting up multiple SSL certificates...?

Must be some combination of:
Windows 2012 I think has some facility to allow hostnames and more than 1 certificate to work...
Store page (as mentioned in #1 above) has a spot for hostnames, so I guess this is where you put the ones that your shop needs to respond to.
DNS resolving to the IP of the target/platform server and somehow EXPLICITLY forcing hostname must be provided...
Is there any guidance/setup doco on doing this?