Are you running 6.1.2?

I think you need this for 1 & 1 SSL in checkout to work. I posted some settings recently that worked for me on a 1 & 1 business site.

It's http://community.actinic.com/showthr...ighlight=1%261

Prior to 6.1.2 they failed at the secure chackout.

Norman

Yes I am using version 6.1.2. Do you know the settings I need??

sorry I just noticed the link, I have look at your settings can I ask a stupid question. What is the sslrelay.com ?? Do I need another provider??

Here are the setting I posted earlier:-

And here's a 1&1 Professional site with a sub domain secure.mysite.com pointing at / and set to use the 1&1 SSL.

HTTPPROXYMODE 0
HTTPPROXYADDRESS
HTTPPROXYPORT 80
HTTPPROXYUSER
HTTPPROXYPASSWORD
FTPPROXYMODE 0
FTPPROXYADDRESS
FTPPROXYPORT 21
FTPPROXYUSER
FTPPROXYPASSWORD
SCRIPTID 1
SCRIPTEXT .pl
SMTPHOST auth.smtp.oneandone.co.uk
WEBSITEURL http://www.www.mysite.com/index.html
IGNOREPASSIVEERRORS true
USERELATIVECGIURLS false
PATHTOPERL /usr/bin/perl
SSLCATALOGURL https://sslrelay.com/secure.mysite.com/acatalog/
SSLCGIBINURL https://sslrelay.com/secure.mysite.com/cgi-bin/
SSLPATHFROMCGITOCATALOG ../acatalog/
SSLCODEBASE ./
SSLFTPHOST mysite.com
SSLFTPUSERNAME *********
SSLFTPPASSWORD *********
SSLPATHTOCGIBIN /cgi-bin/
SSLUSEPASSIVEFTP true
CATALOGURL http://www.mysite.com/acatalog/
CGIBINURL http://www.mysite.com/cgi-bin/
PATHFROMCGITOCATALOG ../acatalog/
CODEBASE ./
FTPHOST mysite.com
FTPUSERNAME *********
FTPPASSWORD *********
PATHTOCGIBIN /cgi-bin/
USEPASSIVEFTP true
FTPPATHFROMCGITOCATALOG

Tested OK with Catalog V6.1.2

Now as to how that lot works:-

The sslrelay thing is how 1 & 1 implement SSL. It allows you to access a sub-domain via SSL. You have to go to their control panel and activate both a sub-domain and then SSL on that sub-domain.

In detail, you (and I'm doing this from memory) have to set up a sub-domain first pointing at a directory on your site (in the example above I'm snow-lines.co.uk and I set up sub-domain secure.snow-lines.co.uk and pointed that at the root "/"). Then you activate SSL and tell it that secure.snow-lines.co.uk is your secure sub-domain.

Now in Actinic you set SSL on checkout only and use the settings like I posted above.

Norman

Hi - I have a 1&1 managed server and I have got SSL working fine for one actinic site without any problems.

Does anybody know if you can run multiple actinic sites on the same 1&1 managed server?

When you upload a site is it just the cgi-bin files that are uploaded to the SSL area?

Any help would be appreciated.

Yes, you should just be able to set up a second virtual server on the box that your current web site is on. If they are going to share the same actual cgi-bin folder, then you need to make sure they use different cgi-script ID numbers. Yes.

Hi Chris - you can only setup one virtual server via the control panel.

I think I have managed to work a way around this which seems to work. If anyone can see anything blatently flawed with this then please shout now.

Here we go...

In the web root directory I have setup two directories site1 and site2 which each contain an Actinic shop.

www.site1.com points to the site1 directory.
www.site2.com points to the site2 directory.

I have a 3rd domain name www.secure.com which points to the root directory /.

Using Norman's information below I have setup a subdomain which points at the root:

order.secure.com

and a SSL virtual server :

https://sslrelay.com/order.secure.com


I'm using these network settings for site1

HTTPPROXYMODE 0
HTTPPROXYADDRESS
HTTPPROXYPORT 80
HTTPPROXYUSER
HTTPPROXYPASSWORD
FTPPROXYMODE 0
FTPPROXYADDRESS
FTPPROXYPORT 21
FTPPROXYUSER
FTPPROXYPASSWORD
SCRIPTID 3
SCRIPTEXT .pl
SMTPHOST auth.smtp.oneandone.co.uk
WEBSITEURL http://www.site1.com/
IGNOREPASSIVEERRORS true
USERELATIVECGIURLS false
PATHTOPERL /usr/bin/perl
SSLCATALOGURL https://sslrelay.com/order.secure.com/site1/acatalog/
SSLCGIBINURL https://sslrelay.com/order.secure.com/site1/cgi-bin/
SSLPATHFROMCGITOCATALOG ../acatalog/
SSLCODEBASE ./
SSLFTPHOST www.site1.com
SSLFTPUSERNAME ******
SSLFTPPASSWORD ******
SSLPATHTOCGIBIN /cgi-bin/
SSLUSEPASSIVEFTP true
CATALOGURL http://www.site1.com/acatalog/
CGIBINURL http://www.site1.com/cgi-bin/
PATHFROMCGITOCATALOG ../acatalog/
CODEBASE ./
FTPHOST www.site1.com
FTPUSERNAME ******
FTPPASSWORD ******
PATHTOCGIBIN /cgi-bin/
USEPASSIVEFTP true
FTPPATHFROMCGITOCATALOG


and these network settings for site1

HTTPPROXYMODE 0
HTTPPROXYADDRESS
HTTPPROXYPORT 80
HTTPPROXYUSER
HTTPPROXYPASSWORD
FTPPROXYMODE 0
FTPPROXYADDRESS
FTPPROXYPORT 21
FTPPROXYUSER
FTPPROXYPASSWORD
SCRIPTID 3
SCRIPTEXT .pl
SMTPHOST auth.smtp.oneandone.co.uk
WEBSITEURL http://www.site2.com/
IGNOREPASSIVEERRORS true
USERELATIVECGIURLS false
PATHTOPERL /usr/bin/perl
SSLCATALOGURL https://sslrelay.com/order.secure.com/site2/acatalog/
SSLCGIBINURL https://sslrelay.com/order.secure.com/site2/cgi-bin/
SSLPATHFROMCGITOCATALOG ../acatalog/
SSLCODEBASE ./
SSLFTPHOST www.site2.com
SSLFTPUSERNAME ******
SSLFTPPASSWORD ******
SSLPATHTOCGIBIN /cgi-bin/
SSLUSEPASSIVEFTP true
CATALOGURL http://www.site2.com/acatalog/
CGIBINURL http://www.site2.com/cgi-bin/
PATHFROMCGITOCATALOG ../acatalog/
CODEBASE ./
FTPHOST www.site2.com
FTPUSERNAME ******
FTPPASSWORD ******
PATHTOCGIBIN /cgi-bin/
USEPASSIVEFTP true
FTPPATHFROMCGITOCATALOG


Seems to work fine for my text sites.

You have the same SCRIPTID (3) for both these sites.

Norman

hi Norman - would that make any difference as they are both using different cgi-bins?

Hi, I have been working with a Actinic site on 1 & 1 Professional package, and have noticed with all the correct settings, when the address is https://sslrelay.com/... the small padlock only appears briefly when the Next button is pushed on the last page (CC details).

Is this normal for sslrelay? When it shows the receipt page it says 'This page includes some items that are not secure, do you wish to continue viewing this page?' error. I'm keen to make sure that the details are secure, and whilst I think they might be when the address contains https://, customers may not be so keen with out the small padlock icon.

Many thanks, James

Hi - I have just tested this on my one&one managed server using IE6 and the padlock remains locked ll through the checkout process and whilst https is prefixing the url.

what browser and version are you using?

As long as you're sure they really are separate then you should be OK. It would be easy to check and see.

Remember that the way Apache (I presume that's what's serving those pages) view of the file structure is not the same as that of the operating system.

Norman

Hi Norman - It won't hurt to change them to be different - better safe than sorry.

It is an Apache server.

Hi, I am using IE6 and Actinic Developer (v 6). Having changed some settings, and putting it back to the Actinic default template for Checkout pages, I get the error message...

"This page contains both secure and non secure items"

I have deleted all files from the server and uploaded again incase there was something being left over. I'm all out of ideas!

Thanks, James