6
The ssl certificate is setup properly on the server. I've tested it independantly of xoops, and it works just fine.
I moved the login.php from ./extras to ./ssl, and added the path to the XOOPS root directory to the script.
I chose "yes" in the "Use SSL for login," in xoops' "Preferences Main >> General Settings" form. I set the SSL Post variable. In "URL where SSL login page is located," I've tried pointing to BOTH "./ssl/login.php" AND "./ssl"
I used absolute paths everywhere, and only use relative paths in this message for convenience.
When I login, I can find no evidence that login.php is even being used. I added a couple of lines to the beginning of login.php, which were basically:
echo "ssl login";
sleep(60);
And, again, there is NO evidence that login.php is being used, although logins are successfull.
So, I went and editted mainfile.php and set XOOPS_URL to http<b>s</b>://mysite.com.
login.php still does not seem to be used, but I still get the "you've logged in" page. When it redirects back to index.php, I get an internal server error.
Someone suggested adding a XOOPS_URL_SSL variable, so I tried this (to no avail).
In short, I'm having two problems:
1) login.php does not seem to be used, even though I've followed the instructions to use it.
2) when I set XOOPS_URL to "https://", I get an Internal server error after the login redirect.
Thank you in advance for any help you can offer!