Posting in the Magento forums has been disabled pending the implementation of a new and improved forum solution which should better serve the community.

For new questions please post at magento.stackexchange.com, the community-run support site for the Magento community. We will be providing updates on the new forum solution soon. For questions or concerns please email community@magento.com.

Magento Forum

Session data not passed between HTTP and HTTPS - Basket emptying on checkout
 
Devpen
Jr. Member
 
Total Posts:  11
Joined:  2008-07-30
 

Hi guys,

First things, top notch piece of software! Takes a little bit of getting used to the structure, but I’m getting there. My major difficulty is that you can’t actually buy any products at the moment.

We have an SSL certificate installed and signed, and we have the administration section setup with base url (http://www.devpen.info/shop/) and the correct secure url (https://www.devpen.info/shop/). We have enabled SSL frontend. When you add a product to the basket, then click “Checkout Now”, it returns to a page displaying an empty basket.

If we disable SSL frontend, it all works as it should do, but when we enable SSL - its going pear shaped. It looks like the session data isn’t being passed between the two ‘different’ urls.

We have only modified the core code in one place to fix a rates bug (http://www.magentocommerce.com/boards/viewthread/14323/).

We can’t find out the cause, any help?

 
Magento Community Magento Community
Magento Community
Magento Community
 
Devpen
Jr. Member
 
Total Posts:  11
Joined:  2008-07-30
 

i should also note that if the whole site is set to HTTPS, it works.

so it seems the session is not getting carried over from http-> https.

 
Magento Community Magento Community
Magento Community
Magento Community
 
slandsbek
Jr. Member
 
Total Posts:  12
Joined:  2008-08-12
Stuttgart, Germany
 

Hi, I’m facing the exact same problem as described by Devpen above.
Can anybody help?

 
Magento Community Magento Community
Magento Community
Magento Community
 
Devpen
Jr. Member
 
Total Posts:  11
Joined:  2008-07-30
 

ok so we finally managed to fix it.

we had the php extension Suhosin installed, turns out that was the culprit.
We just disabled it for now, still looking into EXACTLY what causes it, but i think one of these is to blame

http://www.hardened-php.net/suhosin/configuration.html#transparent_encryption_options

hope that helps you stefan....

 
Magento Community Magento Community
Magento Community
Magento Community
 
misterMan
Member
 
Total Posts:  57
Joined:  2008-07-15
 

Yup,

Suhosin broke a number of my session ids. Turn it off. That should fix it.

Good luck!

 
Magento Community Magento Community
Magento Community
Magento Community
Magento Community
Magento Community
Back to top