AbanteCart Community
Shopping Cart Operations => Support => General Support => Topic started by: gswan on June 16, 2017, 10:01:34 PM
-
Hi,
I am using abantecart 1.2.8, php-5.6.30.
After leaving the admin console to timeout it appears to redirect to the admin login page, however it has the string "HTTPS_SERVER" in the URL.
If I manually remove the string I get the admin login page.
Example: HTTPS_SERVERindex.php?rt=index/
The server URL's are configured and SSL is enabled in the settings. Is there anywhere else I should be looking for where this comes from?
-
This looks like some misconfiguration on your web server. Check Apache settings or contact your hosting company.
-
Checked apache settings and .htaccess rewrite rules. Nothing there.
It looks more like a string coming from PHP, where HTTPS_SERVER is supposed to be defined somewhere, but isn't.
-
Hello.
The better way to solve it is upgrading up to 1.2.10 version.
AbanteCart becomes more stable version-by-version.
-
I ended up finding this in the code (html.php), and there does not appear to be any check to see if HTTPS_SERVER is actually defined.
public function getURL($rt, $params = '', $encode = '') {
if (isset($this->registry->get('request')->server['HTTPS'])
&& (($this->registry->get('request')->server['HTTPS'] == 'on') || ($this->registry->get('request')->server['HTTPS'] == '1'))) {
$server = HTTPS_SERVER;
} else {
//to prevent garbage session need to check constant HTTP_SERVER
$server = defined('HTTP_SERVER') ? HTTP_SERVER : 'http://' . REAL_HOST . get_url_path($_SERVER['PHP_SELF']);
}
-
Once the "SEO URL's" setting was enabled (and .htaccess included) the problem is no longer present.
-
Thank you, gswan