tags:

views:

22

answers:

2
Q: 

Drupal: how to enable SSL layer on shopping pages ?

It is the first time I'm using SSL for a Drupal-based e-commerce shop.

I need to enable SSL only on the web shop pages, I've found this module for this: Secure Pages.

However I need to know what are exactly the steps I need to perform... should I first

1) Buy SSL certificate at hosting service

2) Enable it.. (Hosting services usually provide a specific folder for https pages. However I cannot split Drupal in two. So I was wondering if I have to copy the entire Drupal installation into this folder and then use Secure Pages to specify which pages should be protected and which pages not ?)

3) After this, am I done ? Or are there additional steps ?

+1  A: 

Step 1 and 2 are a must.

Then you can choose from the following:

  1. Use Secure Pages http://drupal.org/project/securepages

  2. Change Drupal $base_url to https://

  3. If your on Apache Server you can use Apache's mod_rewrite

    RewriteCond %{SERVER_PORT} 80

    RewriteRule ^(.*)$ https://%{HTTP_HOST}/$1 [R,L]

    php_value session.cookie_secure 1

JeremySpouken  2010-08-30 17:12:19
ok thanks.. and where should I place Drupal ? I mean.. if I have 2 folders "httpdocs" and "httpsdocs" should I place it in the first folder and enable https only on few pages with secure pages ?
Patrick  2010-08-30 19:17:23
Uh, I don't think there's a step 2 there. If the server is configured to accept HTTPS, securepages will take care of everything. You shouldn't need to modify settings.php or .htaccess.
anschauung  2010-08-31 02:48:03
A: 

Absent weird hosting requirements, all you should need to do is get a certificate, and install securepages.

I'm not sure how a host could require that SSL only be run out of certain directories, unless it's a completely different web root. SSL doesn't know or care where on the server the original script was run.

In either case, give securepages a try and let us know if additional problems appear. On a sane installation enabling securepages should be all you need.

anschauung  2010-08-31 02:54:07

related questions

Batch node operations in Drupal 5
How do you make php's json_decode compatible with firefox's javascript?
Drupal CSS URL Problem
Is it possible to deploy an already built Drupal site?
php Access violation
Creating an online catalogue using Drupal, what are the best modules/techniques?
How do I upgrade from Drupal 5 to 6?
How does AOP work in Drupal?
Any quirks I should be aware of in Drupal's XML-RPC and BlogAPI implementations?
What is the simplest way to handle images in Drupal?
How can I change some of Drupal's default menu strings without hacking the core files or using the String Override plugin?
Why is my Drupal site logging out users when a Javascript function is called?
How do I add a "last" class on the last <li> within a Views-generated list?
How do I determine if I should install Drupal 5.x or 6.x?
Missing label on Drupal 5 CCK single on/off checkbox
learning drupal fast track: how to create a stackoverflow clone?
How do you remove the default title and body fields in a CCK generated Drupal content-type?
How do I create a node from a cron job in drupal?
How to quickly theme a view?
Where is the best place to get Drupal & Sugar CRM developers?
How to get rid of Javascript Runtime Errors when running PDT + XDebug in Eclipse?
What makes Drupal better/different from Joomla
Include CSS or Javascript file for specific node in Drupal 6
What version of TinyMCE will work in Drupal 5 with google chrome?
How can I change the way my Drupal theme displays the front page