Kryptronic Software Support Forum

If you're using Apache and a self signed cert I might suspect the signing chain of the cert not making Apache happy (or at least mod_rewrite).  Are you using Apache and, if you are, are you using it on Windows or *nx?

Well Dave,

I'm at a loss of ideas here. I created a new ssl cert without the domain mismatch and that solved nothing.

All I know is that:
- I can use a rewritten URL over https and it will work (As stated in my second post)
- It is not mod_rewrite that creates the new SEO friendly link. mod_rewrite simply does the translation from the requested SEO URL to the actual URL.
       - It is the programmers responsiblity to create the SEO link; therefore, I must have done something to make CCP use the ugly looking link (but only for urls pointing to https when in http mod. Or all urls when comming from https). But what could this be?

- It doesn't seem to be a cookie issue for two reasons.
      1. I cleared my cookies went directly to https:// and got a cookie sent down.
       2. In http:// unsecured mode my URLs are being rewritten(by CCP not mod_rewrite). CCP is refusing to rewrite any links pointing to https or anything link when I am on a secure connection.

I know most of what I  just said was stated in my previous posts. I just figured if I stated walking throught what we know the answer my just pop up.


Thanks!

Nick,

I am positive the cookie domain is correct for both the SSL and the unsecured URL. Just to ensure this once again. I took the following test procedures:

1. Cleared all my cookies
2. Directly loaded a secure page on my site without first hitting an unsecured page.
3. Checked that a cookie was now on my machine (It was).

I then wanted to ensure that I would not get a cookie if my ssl cookie domain was incorrect. so I.
1. changed the cookie domain to somethingelse.com
2. cleared all my cookies
3. Directly loaded a secured page on my site without first hitting an unsecured page.
4. Checked that a cookie was now on my machine (It wasn't). Thus I had it set up correctly in the first place.

Something else must be happening. I just don't know what!

I really don't understand why cookies are tied into this whole mess. It seems to be a little ugly because of this. Upon a visitors first load of the home page they will have just grabbed their first cookie; thus, all the urls still look like bad. Upon their second page visit they finally get nice looking urls. I havn't  yet figured out what happens when they visit their first https page since I can't get this to work. It seems like it would have been better written to spit out the rewritten URLs strictly based on the SEO option within the admin panel and not based on the presence of a clients cookie.


Anyhow,
Thanks for all the help thus far!

The core that CCP is running on top of is intentionally set up to NOT run SEO when using SSL.  You would have to hack the core class KHXC_Display to change that behavior.

The one line in KHXC_Display that needs to be modified is around line 983 and should read:

if ((!($print_sid)) && (!($print_portrelay)) && (!($ssllink)) && ($seo_status) && ($seo_paramstatus)) {

Removing the test for the ssllink should allow SEO links when using SSL.

if ((!($print_sid)) && (!($print_portrelay)) && ($seo_status) && ($seo_paramstatus)) {

Last edited by Dave (09-11-2008 14:29:06)

I've wondered that very thing myself but I'm seeing more and more sites that are running completely as SSL.  Why baffles me especially since it consumes more CPU to deliver.

Not sure what you mean by "switch image links back and forth".

That is correct but it's a function of CCP so there should not be a case where the URL can not be built dynamically.