X-Cart:Setting Up HTTPS modules
All these modules are part of the server environment. They determine the operation of X-Cart on the server and are normally installed and maintained by the server administrator or hosting service provider. Here is a list of HTTPS modules with a brief description of each module and information on installing and configuring it.
Net::SSLeay - Perl extension for using OpenSSL.
This module offers some high level convinience functions for accessing web pages on SSL servers (for symmetry, same API is offered for accessing http servers, too), a sslcat() function for writing your own clients, and finally access to the SSL api of SSLeay/OpenSSL package so you can write servers or clients for more complicated applications.
For more information and installation instructions, please visit CPAN Net::SSLeay home page.
cURL is a command-line tool for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, POP3, POP3S, RTMP, RTSP, SCP, SFTP, SMTP, SMTPS, TELNET and TFTP. cURL supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks.
For more information and installation instructions, please visit cURL home page.
libcurl is a free and easy-to-use client-side URL transfer library, supporting DICT, FILE, FTP, FTPS, GOPHER, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, POP3, POP3S, RTMP, RTSP, SCP, SFTP, SMTP, SMTPS, TELNET and TFTP. libcurl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, Kerberos), file transfer resume, http proxy tunneling and more!
libcurl is highly portable, it builds and works identically on numerous platforms, including Solaris, NetBSD, FreeBSD, OpenBSD, Darwin, HPUX, IRIX, AIX, Tru64, Linux, UnixWare, HURD, Windows, Amiga, OS/2, BeOs, Mac OS X, Ultrix, QNX, OpenVMS, RISC OS, Novell NetWare, DOS and more...
libcurl is free, thread-safe, IPv6 compatible, feature rich, well supported, fast, thoroughly documented and is already used by many known, big and successful companies and numerous applications.
For more information and installation instructions, please visit libcurl Front Page.
Many Linux distributions come with pre-compiled OpenSSL packages. Those are already well-known among the users of said distributions. Such users should get in touch with their distributors to get the software.
Users of operating systems with no pre-compiled OpenSSL packages may get a binary distribution of OpenSSL for their operating system at OpenSSL Binary Distributions website.
How to test HTTPS modules in my X-Cart store?
- Log in your X-Cart admin back-end.
- Go to the Summary page, "Environment info" section.
- Click "Active >>" link in the "HTTPS modules" table; a popup window will show up.
- In the popup window, enter any secure URL into the "URL" field, for example: https://www.paypal.com:443/.
- Click on "Submit".
- If you get any errors in the HTTPS module response, or get no response at all, it means the HTTPS module does not work. In such case, go to the "General Settings" page, switch the "Preferred HTTPS module" setting value to any other HTTPS module and test it again (repeat steps 2-5 until resolved).
"HTTP/1.1 301 Moved Temporarily"
"HTTP/1.1 200 OK"
If neither of the HTTPS modules are installed on your server, please contact your server administrator or hosting service provider, and ask the to install any HTTPS module from the ones listed above. The libCURL option is the most preferred one.
Problem: Getting the following error in X-Cart error log files:
[01-Feb-2012 21:42:17] (shop: 01-Feb-2012 21:42:17) HTTPS message: HTTPS module: libcurl Error message: X-Cart HTTPS: libcurl error(35): error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol Request URI: /admin/configuration.php?option=Security -------------------------------------------------
Solution: This is a server-side issue, so please contact your hosting provider regarding this problem.