Hello,

added a SSL-Certificate to the website and the AddToCart button no longer works in all views: Category, Productdetails and Quick View

https://www.forster-winzer.de/halbtrockene-weissweine.html

Joomla 2.5.14
Pure Mart 3.8
VM 2.0.22a

Kindly request help.

Hi,

The add the cart button doesn't work when https:// protocol is active, because of this request:

Blocked loading mixed active content "www.forster-winzer.de/index.php?option=com_virtuemart&nosef=1&view=cart&task=addJS&format=json&lang=de&quantity%255B%255D%3D1%26option%3Dcom_virtuemart%26view%3Dcart%26virtuemart_product_id%255B%255D%3D113&_=1385544337084"

Because the website is trying the make the http:// call even though the protocol is https://. Therefore it gets blocked (which is normal). You shouldn't be using https:// in the category page though, this doesn't make any sense and not necessary. But if you insist to use the HTTPS:// in all the pages; you may try to include this line:
or
into configuration.php file.

OR- use the .htaccess force redirection method.

But i would suggest you to use SSL, only in checkout and account pages. To do it; through the Virtuemart Backend, enable this setting:
Enable SSL for sensitive areas (recommended)

and leave everything to Virtuemart. Virtuemart will automatically redirects to https:// in the checkout and account pages, which are the pages where you actually need to use SSL.

Regards.

Hi,

thanks for the answer. I don't want to use the https protocol on the whole site. I want to use it as you suggested only in sensitive areas. The setting is enabled in VM.

The problem is when a user fills his cart and goes to checkout page and decides to add one more product all links are changed to https and it is not possible to add more products to the cart.

This procedure is a common scenario of users and should work.

How to solve this issue?

Kind regards

Hi,

you should better be using .htaccess for this purpose.
Basically if the user browse the "account" page or the "cart" page, the user should be forced to redirected to https:// protocol, for all other pages, the url should be forced to http://... which is the ideal way of using SSL. browsing the website SSL will dramatically increase the page loading time. Therefore it should be used only when it is needed.

I found a great article about it:
stackoverflow.com/questions/12260816/htaccess-redirect-to-ssl-only-for-certain-pages-and-www-non-secure-for-the-other
and there are others on google.com as well.

Take a look at it. But you need to modify the queries (checkout|login|my-account|administrator|webshop) depends on what SEF URL's you are currently using for the sensitive pages.

Regards.
Support.