Re: SSL problem: "No items in your basket" on many minivend sites

[William Tan <william@absolutely.com.sg>]

******    message to minivend-users from William Tan <william@absolutely.com.sg>     ******


In fact I've just made mine work after sifting through the mailing list
archives.  What I have done from the original (MV 3.12) cfg's are:

1) I set IpHead to yes in minivend.cfg
2) enabled Cookies in catalog.cfg
3) and DomainTail to yes in minivend.cfg (contrary to what the docs say)

Of course, there are other changes that I have made but nothing related to
these I hope.

Anyway, if your secure server and the non-secure server are different
machines (or domain / IP) your best bet is to use the WideOpen directive
in catalog.cfg (I think the usage is : WideOpen    Yes)

One thing I really don't understand is that for a POST request, the
session id is already passed as a hidden field, why doesn't it get
recognised.  In fact, I think only the shopping cart is dropped, where
other things still remain.  Anybody care to explain?


Regards,
wil.

On Fri, 14 May 1999, Joe Mazz wrote:

> Dear Minivend gurus:
> 
> My minivend catalog project was operating just fine through the checkout
> phase,
> until I ventured into using SSL. I have been experiencing a problem that
> Russ@khouse.org
> described in a posting back in November 1998. Without  SSL the checkout
> process works fine, but SSL is required to do business in the real
> world.
> With SSL, when the final page comes up (served by ord/checkout.html),
> minivend thinks there are no items in the shopping cart, so you can't
> check out.
> 
> I found no messages in the minivend mail archive following up on Russ's
> posting to
> offer a solution to this problem. Other postings mention numerous
> related problems
> regarding configuring or using Minivend with SSL, but follow-up postings
> again don't
> offer clear solutions, only possible "hints."
> 
> Today I surveyed six catalogs on the Web that are using Minivend, and
> with
> Netscape Communicator 4.07 I was not able to keep anything in the
> "backet" to
> complete an order on any of them! Assuming these sites have been taking
> orders from
> some people, I can only conclude it is a brower issue.  Assuming I am
> not alone in this
> problem, it is possible that many potential customers are turned away
> from minivend sites
> because after ordering items, users simply cannot check out.
> 
> I suspect it has something to do with cookies issued from the non-SSL
> pages being
> mismatched with those issued from the SSL server for the checkout page.
> Is a possible solution to set options in minivend.cfg or  catalog.cfg to
> not use cookies?
> 
> Does anyone have a FAQ document  to help developers with this and other
> problems
> with minivend's interaction with SSL?
> 
> Any solutions will be highly appeciated (by many of us, I'm sure).
> 
> Thanks in advance.
> 
> Regards,
> 
> Joe
> 
> http://www.minivend.com:80/minivend/minivend-list/1998-old/2026.html
> 

-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list