SSL Search Problem

[Driven2a]

I have searched the forum but haven't found a problem that's exactly the same as mine.

 

One topic I saw was that someone had a similar problem however their SSL was activated for the whole site, however mine isn't (under preferences in prestashop enable SSL is set to YES)

 

So basically when I search from either any of the SSL pages such as: my account, checkout or cart, I get the following warning in IE, firefox etc

 

'Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.

 

Are you sure you want to continue sending this information?'

 

Thanks

[tomerg3]

View the page source, and look for an image, css or js file that is not using https://

[Driven2a]

I used firebug, and I found the search box is not using https, how can I change that?

 

<form method="get" class="searchboxATM" action="http://www.**************.com/search">

[tomerg3]

Looks like it was either customized, or was not done right to begin with.

Check out the actual .tpl file and paste the action code here

[Driven2a]

<form method="get" action="{$link->getPageLink('search.php')}" id="searchbox">
 <p>
  <label for="search_query_top"><!-- image on background --></label>
  <input type="hidden" name="orderby" value="position" />
  <input type="hidden" name="orderway" value="desc" />
  <input class="search_query" type="text" id="search_query_top" name="search_query" value="{if isset($smarty.get.search_query)}{$smarty.get.search_query|htmlentities:$ENT_QUOTES:'utf-8'|stripslashes}{/if}" />
  <input type="submit" name="submit_search" value="{l s='Search' mod='blocksearch'}" class="button" />

 

I'm running 1.4.4.1 by the way.

[tomerg3]

I don't think this is the right code, as it doesn't have that class tag (class="searchboxATM" )

[Driven2a]

This was found in modules/blocksearch/blocksearch-top.tpl

 

Is that the correct directory?

[tomerg3]

See if it also exists in your theme folder (/themes/your_theme/modules/...)

[Driven2a]

Ah I see!

 

Here it is:

 

<form method="get" action="{$link->getPageLink('search.php')}" id="searchbox">
 <p>
  <label for="search_query_top"><!-- image on background --></label>
  <input type="hidden" name="orderby" value="position" />
  <input type="hidden" name="orderway" value="desc" />
  <input class="search_query" type="text" id="search_query_top" name="search_query" value="{if isset($smarty.get.search_query)}{$smarty.get.search_query|htmlentities:$ENT_QUOTES:'utf-8'|stripslashes}{/if}" />
  <input type="submit" name="submit_search" value="{l s='Search' mod='blocksearch'}" class="buttontop" />
</p>
</form>

[tomerg3]

This looks exactly like the original code.

I still do not think this is what your site uses.

Trying seeing if it is a 3rd party module or something like that, or do a search in your code for "searchboxATM"

[Driven2a]

You're a star, totally forgot I had a top menu module which has the search bar in it

 

'<form method="get" action="' . (_PS_VERSION_ < 1.4 ? __PS_BASE_URI__ . 'search.php' : $link->getPageLink('search.php')) . '" class="searchboxATM">
    <label for="search_query_atm_' . $type . '_' . $row ['id_' . $type] . '">' . ($withExtra && trim($row ['have_icon']) ? '<img src="' . $this->_path . $type . '_icons/' . $row ['id_' . $type] . '.' . ($row ['image_type'] ? $row ['image_type'] : 'jpg') . '" alt="" title="" class="adtm_menu_icon" />' : '') . '</label>
    <input type="hidden" name="orderby" value="position" />
    <input type="hidden" name="orderway" value="desc" />
    <input type="text" class="search_query_atm" id="search_query_atm_' . $type . '_' . $row ['id_' . $type] . '" name="search_query" value="' . (trim($row ['name']) ? htmlentities($row ['name'], ENT_COMPAT, 'UTF-8') : '') . '"' . (trim($row ['name']) ? ' onfocus="javascript:if(this.value==\'' . htmlentities($row ['name'], ENT_COMPAT, 'UTF-8') . '\')this.value=\'\';" onblur="javascript:if(this.value==\'\')this.value=\'' . htmlentities($row ['name'], ENT_COMPAT, 'UTF-8') . '\';"' : '') . ' />
    <input type="submit" name="submit_search" value="' . $this->l('OK') . '" class="button_mini" />

[tomerg3]

Change the action to be like the other .tpl files, cleat the smarty cache and try again

[Driven2a]

This was in a PHP file so wouldn't the code be different?

[tomerg3]

Yes, I would check with whoever created that module.

[nikmagnus]

Hi Tomerg,

 

I'm having a similar problem. I get a "form not secure" when searching from the blocksearch-top from the accounts (SSL) pages.

I've checked out the source of the page for non-https links, and the culprit is

<div id="search_block_top">
<form method="get" action="http://www.woodbridgefruittrees.com.au/woodbridgefruittrees/search" id="searchbox">
 <p>
  <label for="search_query_top"><!-- image on background --></label>
  <input type="hidden" name="orderby" value="position" />
  <input type="hidden" name="orderway" value="desc" />
  <input class="search_query" type="text" id="search_query_top" name="search_query" value="" />
  <input type="submit" name="submit_search" value="Search" class="button" />
</p>
</form>
</div>

 

Im not running any customisation in the blocksearch module, and have checked my theme doesnt have a blocksearch over-ride.

I've replaced the blocksearch-top.tpl with a fresh one, just in case.

Im running PS 1.4.10 SSL is checked in Preferences. Have set to force compile and cleared caches.

 

Im not running any other custom module. I cant find anything else with "searchbox" in it.

 

Any ideas? Cheers, Nik

Edited April 6, 2013 by nikmagnus (see edit history)

[tomerg3]

That's not the culprit.

 

Only images, css and js files loading from http will cause the warning