AbanteCart Community
Shopping Cart Operations => Support => General Support => Topic started by: dpp on August 29, 2012, 06:46:37 PM
-
I just installed AbanteCart. After closing my browser and re opening it to access the admin area, I keep on ending up at the front end of the main site. Any guidance on this issue would be greatly appreciated.
-
When you were installing AbanteCart there was a field that was asking for your admin section key.
See image attached.
If you did not edited it this field, admin section will be set to your_admin. It is not recommended to use this name
To access your admin you need to add s=your_admin to the URL
Example: demo.abantecart.com?s=demo_admin
You can locate your admin section key in configuration file located in system/config.php
Look for:
define('ADMIN_PATH', '.....
-
The semi-mandatory obscurity is an interesting touch - I'm just not sure it is worth the effort.
I've seen a number of penetrations which occurred because of insecure protocol and insecure routers . When the bad guys are reading your TCP stream obscurity is not going to help you....
David
-
The semi-mandatory obscurity is an interesting touch - I'm just not sure it is worth the effort.
I've seen a number of penetrations which occurred because of insecure protocol and insecure routers . When the bad guys are reading your TCP stream obscurity is not going to help you....
David
David, we (i mean php:)) can't to check is webserver have correctly tuned ssl support.
ssl-connection works step-by-step: certificate exchange and checks of it by verifier, if all ok then data exchange.
Php does not afford to check is first check was valid. I remember troubles in firefox and chrome with ssl v2 certificates. Servers works fine but user have not access to pages.
-
Perhaps, but the functionality of the SSL systems is a hosting problem - and for competent hosts its a minor one. It is better NOT to get the page than to transmit sensitive data over an insecure line. The ability to support SSL should be tested well before the cart is installed.
This is one of those points at which hosting, application development and cart operations have to work together to assure a safe operating environment. Don't be afraid to post a requirement that hosting support includes working SSL.
Also, I doubt that PHP is incapable of checking connection security. cURL is capable of returning connection status. There will be a great deal of nuance, of course - but really, having and requiring SSL is not nearly as big a problem as not having and using it.
David
-
Let's be on the same page here. Do you we still refer to installation steps? There 2 sides of the coin here.
1. To make installation easy and pleasant experience
2. To make installation secure and cover all possible aspects for miss configured SSL. Not everyone have SSL configured properly right at the start.
#2 can cause problems in installation if there is SSL issues on the server prior to installation and that effects #1.
For now, to get maximum security at installation, provided data can be temporary and later changed in configuration file, when moved to production. This is discretionary to individual security policy.
Finely, I agree to add option with SSL enabled installation in the future after number of different testes.
-
Well, I was more focused on the access to the admin index page - but its equally easy for an installing technician to assure that SSL is operational before the installer is even run.
Installation should be done by people with at least some basic knowledge. I see this as part of the customer qualification process. If a customer can't tell when they have a secure connection, they're not qualified to operate a secure site - which are the only ones I want to host...
David
-
I am on the dashboard, but I have 2 messages that are giving me errors. They both tell me that:
1. /home/squeakey/public_html/AbanteCart/cutie/system/config.php file needs to be set to read and execute modes (644 or 755) to keep it secured from editing!
and
2. /home/squeakey/public_html/AbanteCart/cutie/index.php file is writable. It is recommended to set read and execute modes (644 or 755) for this file to keep it secured and running properly!
I do not see where I can fix these two errors so that I can do something with the app. Can anyone help please?
This is an install from my sites cPanel page so I did not have to fill in anything except for my login information that I wanted and the address where I wanted it to be at. This is from the "messages" page. I can't get onto any other page. When I try to go to them (dashboard included) I get the "ERROR 403 FORBIDDEN" page.
Any help is much appreciated.
-
Read this:
http://forum.abantecart.com/index.php/topic,3993.0.html
These "warnings" seems to have popped up in 1.2.4. You can disable these checks with instructions in link above. They don't seem to be hard errors and maybe a half attempt to lock down security a bit more.
-
the problem now is i can't even login at all....what happened? the page won't even load now...grrrr
and, for some reason i can't get into my cPanel page either now
ok, got into the cPanel page again, but every time I try to change the area that it says to change, the page keeps refreshing to the 403 error page before I can even scroll the page to find what i need to find....it only gives me about 3 seconds to find something and I can't do anything in that short of time
was finally able to click on the "disable" and save it, but its still doing it. it won't load. it keeps going to 403 error page
-
Finally got in and am looking at the different sections of the default template. All I need now is to understand how to edit it...lol.
I'm not any good at all with anything PHP....waaaaaaa
-
Hey CutiePengu, welcome to Abantecart. As a long time user I would strongly suggest you can change a LOT of stuff on a template without ever looking at the PHP.
Spend a little time reading the how-to manual http://docs.abantecart.com/ (http://docs.abantecart.com/) and playing with how the blocks system works -suspect you will find most of your requirements will be met.
Have fun, it's a great cart - but will need some learning curve as it is so flexible.
Lee
-
can somebody help me pleeeeese, i have just restored a backup after switching servers and i get
There has been a critical error processing your request
Please check AbanteCart and webserver error logs for more details. You can check error log in the control panel if it is functional. Otherwise, refer to error log located on your web server
:(
[Wed Oct 28 05:08:40 2015] [error] [client 179.43.176.34] File does not exist: 404.shtml, referer: index.php
-
Hello.
Please check AbanteCart error log (http://forum.abantecart.com/index.php/topic,834.msg3085.html#msg3085)
In case you can not access admin you can locate error log directly in the file /system/logs/error.txt
-
I just installed abantecart on my server and when I try to log into the Admin area I type my user and password and click on login and it comes back to the login screen instead of logging me in. Please help
Admin did you see this post?????
-
I just installed abantecart on my server and when I try to log into the Admin area I type my user and password and click on login and it comes back to the login screen instead of logging me in. Please help
Hello. Try to clear your browser cache.
What is your browser? Can you try another browser (Chrome, FireFox, Safari)?
-
Hi,
I just manually set up a local copy of Abantecart v 1.2.10 on Windows 10 on IIS. PHP version is 7.1.1.
When i accessed admin page, I get this error: Your server is unable to create a session necessary for AbanteCart functionality. Check logs for exact error details and contact your hosting support administrator to resolve this error.
I went through old posts for the same error but I could not understand those as I guess they are talking about apache server or linux env.
I have OTB setup, so not sure why this is not working. My other php sites work fine.
Appreciate any help, i can get
Thanks.
-
hi.
We suggests to read about session.save_path directive of your php.ini file.
http://php.net/manual/en/session.configuration.php#ini.session.save-path
Looks like you have incorrect value here or directory for temporary file is non-writable for php
-
Hi,
I opened php.ini file from C;/windows and removed ';' in front of following statements:
session.save_path = "N;/path"
session.save_path = "N;MODE;/path"
session.save_path = "/tmp"
Then i recycled application pool and restarted the website on IIS. Then I cleared cached data from browser.
Still the issue persists.
===================
Edit: I even tried to set an absolute path: session.save_path = "C:\webhosting\tmp" and created directory with write permission to all. but nothing seems to work. Will really appreciate a resolution.
===================
Edit2: Tested session setup using this code:
<?php
session_start();
$counter = isset($_SESSION['counter']) ? $_SESSION['counter'] : 0;
$counter++;
print "You have visited this page $counter times during this session";
$_SESSION['counter'] = $counter;
?>
It worked fine. But Admin page is still not working. Shall i try to reinstall afresh or there is a good explanation?
-
As this a IIS specific configuration, can you please create a new thread?
-
I need the data to fill out this installation form.
Would you help me.
-
Hi.
See if this help you https://bitnami.com/stack/abantecart/installer#windows