VirtueMart Forum

VirtueMart 2 + 3 => Security (https) / Performance / SEO, SEF, URLs => Topic started by: PattyHultquist on November 06, 2012, 20:36:12 pm

Title: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 06, 2012, 20:36:12 pm
Running Joomla 2.5.4 and VM 2.0.12.

The state dropdown will not populate during checkout if Joomla's SEF is turned on. When in Chrome, the secure pages error saying there is insecure content and the page will not load properly. The base href is being set to the unsecured URL so all dynamic paths are using the unsecured files. If I turn off SEF the base href code disappears and the page then functions correctly. Is there a different SEF extension that would work better?

I've tried installing the extension Yireo SSL Redirection but cannot determine what to modify, if that's even the right solution.

I'm using the beez 20 template. Is there some incompatibility with this template?
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PRO on November 06, 2012, 21:43:46 pm
nobody can look without a url


Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 06, 2012, 23:51:23 pm
http://www.thescrewspeshitpillts.com - the main site. The page where the state dropdown won't work in Firefox is https://www.thescrewspeshitpillts.com/index.php/my-account/editaddresscartBT.html and Chrome and IE won't even load the page correctly at all.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: bytelord on November 07, 2012, 01:19:37 am
Hello,

This is a problem of your template and not VM. Is a javascript conflict i suppose and caused by md_stylechanger.js.

You are loading jquery 1.8, try 1.7.x

Regards
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 07, 2012, 16:29:45 pm
I have disabled the code that loads md_stylechanger.js in my template as I don't need it. I've tried loading many different versions of jquery and it is not helping. I'm using a plugin, jquery easy, to try to work through conflicts but cannot determine the best course of action.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PRO on November 07, 2012, 18:02:40 pm
in

root/configuration.php

do you have "var live site" filled out?

if so, it should be different
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 07, 2012, 18:57:01 pm
I have tried everything with the $live_site variable in configuration.php from leaving it blank to https://www.thescrewspeshitpillts.com with and without the slash at the end and secure vs. non secure and it doesn't change anything.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: bytelord on November 07, 2012, 19:35:22 pm
Hello,

The page is loading, the style is not loading i suppose and some other things because chrome found that your certificate is insecure ... i enable the site security is fine with chrome and i was able to load the page styling but not the js for countries that is not working properly.

Do you own a valid certificate? Why you have enable it under vm configuration?

Your error is: XMLHttpRequest cannot load http://www.thescrewspeshitpillts.com/index.php/my-account/index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=223. Origin https://www.thescrewspeshitpillts.com is not allowed by Access-Control-Allow-Origin.

Do you understand why is not working now? Non valid certicate is blocked out by the browsers  ... that's your issue, place a valid SSL certificate, purchase one.

Regards
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 07, 2012, 20:34:38 pm
I definitely do have a secure certificate. It was purchased through Network solutions, it's hosted at Network solutions and the status is showing Issued and Installation Complete in the Network solutions account. It's for www.thescrewspeshitpillts.com.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: bytelord on November 07, 2012, 20:43:30 pm
Yes, you have right.

Take a look on the screenshot (chrome)...



[attachment cleanup by admin]
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: bytelord on November 07, 2012, 20:50:53 pm
Also when i load the content i receive the following (see attached).

the json request is not called under SSL ... but under http://www.thescrewspeshitpillts.com/index.php/my-account/index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=223

hmm ... ideas?

[attachment cleanup by admin]
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PRO on November 07, 2012, 21:47:37 pm
also,

why do your products NOT have the suffix?

are you using a 3rd party SEF component??

AND; "United States" is auto selected?

the fields will never populate like that (not that thats your problem)



Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 07, 2012, 22:01:05 pm
bytelord, I realize that the secure site is trying to load insecure files. This is precisely the problem I'm trying to figure out. When SEF is turned on, one of the first lines of code is base href=http:// - it is putting the base href as the non-secure site. When I turn off SEF it doesn't have that line of code for base href so everything then loads fine and the state dropdown even works fine. All issues go away. But, I need to use SEF.

Pro, I'm using the built in Joomla SEF. If there is another extension that will help all of these conflicts I'd be happy to try it, but I've seen all over these forums that people have problems with others as well.
Not sure what you mean by the products not having the suffix.
I have autopopulated the country in the database directly (as the default). I have verified that this is not causing any conflict issues related to the state dropdown.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: bytelord on November 08, 2012, 17:45:44 pm
Hello,

Please test the following and let me know:

edit the file components\com_virtuemart\assets\js\vmsite.js

Change line 38 from:
$.getJSON('index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=' + byAjax,

to this:
$.getJSON(window.vmSiteurl + 'index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=' + byAjax,

Please let me know is that fix the issue.

Regards
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PattyHultquist on November 08, 2012, 20:28:31 pm
bytelord, that didn't seem to change anything. Question: should the virtuemart site url be set to the non secure URL?

One that that is very interesting is if you take the security away and pull up http://www.thescrewspeshitpillts.com/index.php/my-account/editaddresscartBT, so it's a non-secure page but it's SEF, everything works just fine. No jquery conflicts, so it seems to all have to do with the security problems. I'm wondering if I can modify something on this particular page and other secure pages to ensure the js and css files coming in are pulled in using the secure URLs.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: PRO on November 08, 2012, 21:02:33 pm
PattyHultquist

why do half of your featured product links redirect home?

also, why do your product links not have the suffix? have you filled in 1 in vmart confuration?

do you have akeebah admin tools?
Is so, that what I use to create htaccess files. You might have problems in htaccess


ALSO: you are not using windows server right? I know network solutions love windows
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: randomdev on November 13, 2012, 08:14:38 am
How was this problem fixed, I am encountering the same problem on vm2.0.6 (I cant upgrade)

I noticed that the state list is being redirected and not returning any values? It works fine when sef is disabled?

GET https://127.0.0.1/index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=13
301 Moved Permanently 216ms   

GET https://127.0.0.1/component/virtuemart/state
301 Moved Permanently 100ms   

GET https://127.0.0.1/state/page-1-12
200 OK   177ms

all that is returned from this final page is: {"":[]}
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: mohtashimj on September 22, 2021, 13:45:33 pm
Hello Team,

I am getting the same 301 redirects error for the state list for my Sign up page (website url below) and I am using SH404SEF extension for URL rewriting.

https://www.uniforms.com.au/my-account.html

Please provide any solution to overcome this issue.
Title: Re: SEF URLs and Insecure content in SSL and state dropdown problem
Post by: jjk on September 26, 2021, 16:15:40 pm
I suppose you will have to disable SH404SEF for your cart, account and VirtueMart registration pages. Looks to me like the VM scripts for the Country and State dropdowns doesn't load.

With the FireFox web developer tools enabled, you should see urls like this as the last scripts loaded, when you select Australia as the country and a state:
https://www.uniforms.com.au/index.php?option=com_virtuemart&view=state&format=json&virtuemart_country_id=13
https://www.uniforms.com.au/?option=com_virtuemart&view=state&format=json&virtuemart_country_id=13

BTW - I think SH404SEF's url rewriting is an absolutely unnecessary tool since Joomla 2.5.