Jump to content
tomerg3

CRITICAL SSL BUG in PS 1.4.7 - Fix inside.

Recommended Posts

PS 1.4.7 will redirect all payment module pages from https:// to http:// virtually breaking any hosted payment module that uses SSL.

 

Edit /classes/FrontController.php line #87 (normally, you do not want to change any class file directly, but this is an exception as this will likely be fixed in 1.4.7.1 very soon).

 

Remove the following code


else if (Configuration::get('PS_SSL_ENABLED') AND Tools::usingSecureMode() AND !($this->ssl))
{
header('HTTP/1.1 301 Moved Permanently');
header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
exit();
}

 

Save the file, and upload to your server.

  • Like 3

Share this post


Link to post
Share on other sites

Wow! This works! Tomer, you are a pro! Thanks so much, I am very grateful to have purchased a module with you. Cheers!

Share this post


Link to post
Share on other sites

THANK YOU for posting this.

 

I was looking for a solution last night, came back today to your site being turned off for updates/upgrades and then this was here. :)

Share this post


Link to post
Share on other sites

Thanks Tomer, that fixed the Offline Credit Card module

Share this post


Link to post
Share on other sites

Hi everyone,

 

As Tomer said, this issue is going to be fixed real soon.

 

Meanwhile you can already fix it with the following change :

 

Edit /header.php and replace the following two lines :

 

$controller = new FrontController();
$controller->displayHeader();

 

with

 

// Save the value of $useSSL ($useSSL will be overwritten by FrontController::__contruct())
$hackSSL = false;
if (isset($useSSL) and $useSSL)
   $hackSSL = true;

$controller = new FrontController();

// If $useSSL was set to "true", then overwrite its value to true
if ($hackSSL)
   $useSSL = $controller->ssl = true;

$controller->displayHeader();

Share this post


Link to post
Share on other sites

Hi there

 

Also I need edit /classes/FrontController.php line #87 or no need after Edit /header.php??

 

Please advise me.

Share this post


Link to post
Share on other sites

Good question Mir-aus !

 

Do we have to just change "header.php" or both "header.php" AND "/classes/FrontController.php" ??

 

Please let us know

 

David C

Share this post


Link to post
Share on other sites

Ok thanks Bradly.

 

Not being so well informed about when and how a new version is released, can I guess it won't be far of because this is quite a serious bug, if I understand things correctly ?

 

Any idea when a new PS update will come anybody (I'm on the verg of going live with v1.4.7.0 to replace our ageing Oscommerce site) as it would be nice to have a cleaner version to start with, with over 10,000 customers on our books?

 

David C

Share this post


Link to post
Share on other sites

I would say that 1.5 will be out of beta once they have a good majority of the testers come back with little or no new bugs. I am still on 1.4.4.0 but my test site is running 1.4.7.0 and it seems pretty complete, there will be a 1.4.7.1 or higher I am sure in the next couple of weeks (maybe?).

 

I am kind of doing the same thing, working on getting more familiar with prestashop and working on my other code (parts of the site). Going to start integration of my site's user management with prestashop in another week or so then add a forums integration... so if they delayed the 1.5 for awhile I will be busy till then.

 

Also I would suggest not installing 1.5 the day it is released, I would give it a couple of days and check the forums to see what issues or success is had especially with your size of customer database.

Share this post


Link to post
Share on other sites

Thanks for the reply Bradly.

 

I hope, as you say a 1.4.7.1 will come in the next two weeks (maybe) that would be perfect for me. I was to quick to go to from what seemed a 1.4.6.2 that was working "OK" to a 1.4.7.0, I should have realised that such a larger release would have a few bugs and have waited for the 1.4.7.1 B)

 

I've got no need for multi-shops so I don't feel a need to wait for the 1.5 and I think there, if and when I update again, I'll give the 1.5 a few updates before (if) I do it! :rolleyes:

Share this post


Link to post
Share on other sites

I just edit /classes/FrontController.php line #87. if I edit what PS team said, website doesn't work well on payment page.

Share this post


Link to post
Share on other sites

Hi dikigo,

 

You should use the one I gave. Do not forget to always backup your files before doing any changes.

Share this post


Link to post
Share on other sites

Hi dikigo,

 

You should use the one I gave. Do not forget to always backup your files before doing any changes.

 

I've tried the fix you've posted, but the Offsite redirect still doesn't work.

Share this post


Link to post
Share on other sites

I have tried this fix to no avail and we're losing sales. Paypal will not go to the confirmation!! Please help!!!

 

Thank you

Deborah

 

I tried the two fixes - this is what I receive when I try to make an order:

 

Authorisation to PayPal failed

 

 

Please refer to logs:

  1. PayPal response:
  2. TIMESTAMP -> 2012-03-01T15:54:23Z
  3. L_ERRORCODE0 -> 10002
  4. L_SHORTMESSAGE0 -> Security error
  5. L_LONGMESSAGE0 -> Security header is not valid
  6. L_SEVERITYCODE0 -> Error
  7. PayPal returned error

« Back

Share this post


Link to post
Share on other sites

I have tried this fix to no avail and we're losing sales. Paypal will not go to the confirmation!! Please help!!!

 

Thank you

Deborah

 

I tried the two fixes - this is what I receive when I try to make an order:

 

Authorisation to PayPal failed

 

 

Please refer to logs:

  1. PayPal response:
  2. TIMESTAMP -> 2012-03-01T15:54:23Z
  3. L_ERRORCODE0 -> 10002
  4. L_SHORTMESSAGE0 -> Security error
  5. L_LONGMESSAGE0 -> Security header is not valid
  6. L_SEVERITYCODE0 -> Error
  7. PayPal returned error

« Back

 

 

Hi, in the Settings, make sure the "Sandbox Mode" (tests) is set to Inactive.

 

I had the same issue and after doing that everything worked perfectly.

 

I hope this helps! :)

  • Like 2

Share this post


Link to post
Share on other sites

Hiya, Will this solve the SSL issue of admin looping login page,

 

I enable SSL and alls fine with shop side HTTPS on customer account, but it puts a looping redirect on the admin login, so i'm unable to manage the shop without having to goto PHPmyadmin database and turning the SSl off,

Any help would be great

 

Using prestashop 4.1.6.2

Share this post


Link to post
Share on other sites

Hi,

 

I can't use the authorize.net module. This is the error I get: "Authorize.net returned a malformed response, aborted."

I tried both methods and none is working with Authorize.

When I try the Tomerg3 method, the cart page only reloads and increase the product quantity.

If I try Carl Favre method, nothing is happening, I get the same error as before: "Authorize.net returned a malformed response, aborted."

 

Please help me with this.

Share this post


Link to post
Share on other sites

the header.php method works, but causes problems with the return/redirect URL on my payment provider (sagepay module), but frontcontroller fix from tomer doesnt cause the redirect error, but doesnt change to https either.

 

Looks like i'll be rolling back to 1.4.6

Share this post


Link to post
Share on other sites

HI

I am using 1.4.7. After have enabled SSL onto the shop domain I get mentioned error on OPC after I try to add/deduct product quantity using +/- buttons on side of the product on the checkout page.

 

Changing header.php as Carl Favre said doesnt fix my issue and that error does still appear.

TECHNICAL ERROR: unable to save update quantity

Details:

Error thrown: [object XMLHttpRequest]

Text status: error

Share this post


Link to post
Share on other sites

That's odd, worked on all the sites I've looked into,

You should check out our latest blog entry, which talks about upgrade process, and when it is worth doing http://presto-change...is-the-question

 

yes in hindsight the upgrade was the wrong thing to do.. its caused me all sort of problems now. I normally wait, but i wanted a working version of the layered filter module (which actually still doesn't work).

Share this post


Link to post
Share on other sites

Oh NOooooo, ME too.... after updating to 1.4.7 I can't get past select your payment method. If I try with any payment modules then SSL redirects to non SSL with a dead end, No pass go. None of the fixes above worked. Anyone else have some fixes to try?

Share this post


Link to post
Share on other sites

Okay here's what I did for now. A temporary emergency fix. You have to edit the address manually in the database. For me it was for Paypal.

 

go to your database from PhPMyAdmin, select ps_page_type , click on browse, find modules/paypal/payment/submit.php click on pencil to edit, change to

https://yourwebsitename.com/modules/paypal/payment/submit.php

make sure you put in your website name in place of yourwebsitename.com, click go to save. Done. You can also change the cheque/payment.php and what ever else payment that you use in there and change to the full address. Hope this helps

 

PS. I also have the two above fixes in place from Carl Favre and tomerg3, (their fix alone did not work) but I did my above fix and I replaced the Paypal module folder with the last working version. it's working now with all of the above done together.

Share this post


Link to post
Share on other sites

How do you edit your own post here? looks like the address gave a squeeze. change to

https://yourwebsitename.com/modules/paypal/payment/submit.php

but change to your domain in place of yourwebsitename.com read above for more detail.

 

update, OH there it is, the Edit button appeared way after I posted. okay I edited it.

Share this post


Link to post
Share on other sites

I have had the same issue. Neither of these solutions seem to work for 100%. Carls solution doesn't work at all for me and the solution tmerg3 supplied fixes the buttons so when you press plus or minus the cart dynamically updates but the entering a value in the quantity field does not update cart, it does on my test site presumably because SSL is not activated. I am new to prestashop, and have been doing some debugging of the PHP using eclipse and xdebug but Im also a bit new to web development and I am still getting my head around this stuff. Is there a subversion trunk repostitory for 1.4.7.0? I can't easily debug with SSL turned on as I would have to spend some time getting that sorted. I think its been logged as a bug many times over, so I am going to see if its fixed properly I will post back.

 

I have since found that the fix by Tomerge3 works for me but Carls fix did not. My Cart issue was not related to the fix or the bug but a partial closing tag in one of my cart tpl files. So thanks, Tomerg3

Share this post


Link to post
Share on other sites

I am building my site with 1.4.7, but after reading about the problems with the SSL, I have decided not to go live until the next version with a fix comes out. I'm not good at re-writing code to fix the bug.

 

Do you have any idea how long it will be before the next 1.4.7 comes out with a fix for the SSL problem?

 

Thank you,

Dixie in the USA

Share this post


Link to post
Share on other sites

Thanks for the reply Bradly.

 

I hope, as you say a 1.4.7.1 will come in the next two weeks (maybe) that would be perfect for me. I was to quick to go to from what seemed a 1.4.6.2 that was working "OK" to a 1.4.7.0, I should have realised that such a larger release would have a few bugs and have waited for the 1.4.7.1 B)

 

 

Hi darvidc

I am currently using 1.4.6.2, will be open my shop soon, do you have any problem with tis version? if so what kind of problems do you have?

And i need to setup another website with presta, do you think it is better to use 1.4.6.2 again?

 

Thanks

Share this post


Link to post
Share on other sites

I've made the changes to header.php but after upgrading to 1.4.7 from 1.3.2 my users are no longer directed to secure pages on checkout. The radio box to enable SSL is not visible in the Preferences section of the back office. Any idea what could be going on?

Share this post


Link to post
Share on other sites

PS 1.4.7 will redirect all payment module pages from https:// to http:// virtually breaking any hosted payment module that uses SSL.

 

Edit /classes/FrontController.php line #87 (normally, you do not want to change any class file directly, but this is an exception as this will likely be fixed in 1.4.7.1 very soon).

 

Remove the following code


else if (Configuration::get('PS_SSL_ENABLED') AND Tools::usingSecureMode() AND !($this->ssl))
{
header('HTTP/1.1 301 Moved Permanently');
header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
exit();
}

 

Save the file, and upload to your server.

My problem solved by above mentioned editing

Share this post


Link to post
Share on other sites

I just wanted to let you know that Carl's fix did not work for me. So, I tried the fix that tomerg3 offered. That fix worked! I was ready to give up on PS - if your shoppig cart won't work with PayPal, what good is it? Now, I'm wondering what bugs will be in the next upgrade. Not being a coder, you are at the mercy of the "kind hearts" in the forum that are willing to help you out.

 

Thank you, tomerg3!

Share this post


Link to post
Share on other sites

Okay here's what I did for now. A temporary emergency fix. You have to edit the address manually in the database. For me it was for Paypal.

 

go to your database from PhPMyAdmin, select ps_page_type , click on browse, find modules/paypal/payment/submit.php click on pencil to edit, change to

https://yourwebsitename.com/modules/paypal/payment/submit.php

make sure you put in your website name in place of yourwebsitename.com, click go to save. Done. You can also change the cheque/payment.php and what ever else payment that you use in there and change to the full address. Hope this helps

 

PS. I also have the two above fixes in place from Carl Favre and tomerg3, (their fix alone did not work) but I did my above fix and I replaced the Paypal module folder with the last working version. it's working now with all of the above done together.

 

I have also tried both fixes and neither have worked, users are still getting Paypal security header errors and not being redirected to SSL.

 

I'm about to change that value in the database but seem to have a different default value in there: 'modules/paypaldirect/payment.php' should I change this to: 'https://yourwebsitename.com/modules/paypal/payment/submit.php' or 'https://yourwebsitename.com/modules/paypaldirect/payment.php'?

 

Update: I changed it to 'https://yourwebsiten...ment/submit.php' and tried to process a Paypal transaction. Page was directed to 'http://www.yourwebsitename.com/modules/paypal/payment/submit.php' not 'https://www.yourwebsitename.com/modules/paypal/payment/submit.php' so the transaction failed '

Security header is not valid'.

Share this post


Link to post
Share on other sites

Hi darvidc

I am currently using 1.4.6.2, will be open my shop soon, do you have any problem with tis version? if so what kind of problems do you have?

And i need to setup another website with presta, do you think it is better to use 1.4.6.2 again?

 

Thanks

 

Hi Cankart

 

Sorry been away a few days ... Concerning your question, No I havn't been having any problems with 1.4.6.2, I only meant that it might be better to wait after a major upgrade (in this case 1.4.6.x to 1.4.7.0) to a while afterwards, to when a few important upgrade bugs have been found and fixed in the first minor uppgrade of 1.4.7.0 to 1.4.7.1 before you upgrade from a lower version (in your case 1.4.6.2, where waiting for 1.4.7.1 might be advisable as it shouldn't be a problem when you upgrade).

 

DavidC

Share this post


Link to post
Share on other sites

If 1.4.6.2 is a more stable version with SSL working are there any online instructions on how to go from 1.4.7 back to 1.4.6.2? (I've recently upgraded from 1.3.2).

Share this post


Link to post
Share on other sites

o boy, it looks like i broke prestashop it was my fix :ph34r:

 

http://forge.prestas...browse/PSFV-348

 

 

I think the problem is in the construct function in side class FrontController extends FrontControllerCore (FrontController.php)

$useSSL = $this->ssl;

 

should be the other way around

$this->ssl = $useSSL;

 

 

	public function __construct()
{
	global $useSSL;
   $this->ssl = $useSSL;
}

Share this post


Link to post
Share on other sites

o boy, it looks like i broke prestashop it was my fix :ph34r:

 

http://forge.prestas...browse/PSFV-348

 

 

I think the problem is in the construct function in side class FrontController extends FrontControllerCore (FrontController.php)

$useSSL = $this->ssl;

 

should be the other way around

$this->ssl = $useSSL;

 

 

	public function __construct()
{
	global $useSSL;
   $this->ssl = $useSSL;
}

 

So should this be changed rather than the two other patches? I've tried this and removed the other two - still not working. MY issue is with the store resetting SSL Enabled when preferences are saved and with 301 errors on checkout when SSL is enabled.

Share this post


Link to post
Share on other sites

I'd be willing to pay for a fix to these problems my store is having, any takers?!

Share this post


Link to post
Share on other sites

PS 1.4.7 will redirect all payment module pages from https:// to http:// virtually breaking any hosted payment module that uses SSL.

 

Edit /classes/FrontController.php line #87 (normally, you do not want to change any class file directly, but this is an exception as this will likely be fixed in 1.4.7.1 very soon).

 

Remove the following code


else if (Configuration::get('PS_SSL_ENABLED') AND Tools::usingSecureMode() AND !($this->ssl))
{
header('HTTP/1.1 301 Moved Permanently');
header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
exit();
}

 

Save the file, and upload to your server.

 

Hello, when editing this archive i had a problem, i couldn't access to the shop. Then tried to reedit to de original version and nothing happened. I must say I did all this working directly on the server, not on my local computer. I don't now if that makes a difference

Share this post


Link to post
Share on other sites

So far Tomerg3's fix worked for me.

 

Carls did not at all. No SSL or updating of cart quantities or deletion of items.

 

Everything seems to be working fine in sandbox mode right now. More testing to be done.

 

Thanks for the fix.

 

 

BTW when is the official release to this bug coming out, will it use Tomer's fix or a different one.

 

 

Edit : 1/4/12

 

After some more testing I have found that the fix has not really fixed much. I am only getting a partially encrypted SSL for some reason.

You can see when you go through the cart pages that it tries to initiate a full SSL connection but then drops back to only partially encrypted when the page fully loads

Web address does display https:// though

Share this post


Link to post
Share on other sites

the bug may come from function usingSecureMode() as was the case for James R his server does not set $_SERVER['HTTPS'] or $_SERVER['SSL'] variable even if your are using https:// protocol so i add a $_SERVER['SCRIPT_URI'] string test to see if you using SSL

 

here is fix in file ./classes/Tools.php

 

/**
* Check if the current page use SSL connection on not
*
* @return bool uses SSL
*/
public static function usingSecureMode()
{
/* edit by Ha!*!*y */
 if (isset($_SERVER['HTTPS']))
 {
  return ($_SERVER['HTTPS'] == 1 || strtolower($_SERVER['HTTPS']) == 'on');
 }
 // $_SERVER['SSL'] exists only in some specific configuration
 if (isset($_SERVER['SSL']))
 {
  return ($_SERVER['SSL'] == 1 || strtolower($_SERVER['SSL']) == 'on');
 }
 if(isset($_SERVER['SCRIPT_URI']))
 {
  //preg_match('^https', $_SERVER['SCRIPT_URI'])
  return ((strpos($_SERVER['SCRIPT_URI'], 'https') === 0) ? true : false);
 }
 return false;
}

ssl_test.php

  • Like 1

Share this post


Link to post
Share on other sites

ok so what would we need to change? HA!*!*Y Im lost after the last post. I found that in tools, but what does that do, and should I change the line on post #41 as well as this or just the Tools

 

Cheers

Mike

 

PS im also amazed that Prestashop has not released an official fix for such a critical bug.

Share this post


Link to post
Share on other sites

here is a test script to see if you need the fix from posting #46

 

<?php
// SSL test by Ha!*!*y
function usingSecureMode()
{
if (isset($_SERVER['HTTPS']))
{
 print 'you dont need fix #46 '.$_SERVER['HTTPS'];
}
// $_SERVER['SSL'] exists only in some specific configuration
if (isset($_SERVER['SSL']))
{
 print 'you dont need fix #46 '.$_SERVER['SSL'];
}
print 'You DO NEED fix #46';
}
usingSecureMode();
print '<br><br>';
print_r($_SERVER);
?>

Share this post


Link to post
Share on other sites

Well I ran the script, it said I needed the fix. So I applied the fix

 

Still only partially encrypted for some reason. I re ran the ssl test script and it still said I need the fix from #46

 

This was without the other patches in place too

Share this post


Link to post
Share on other sites

Well I ran the script, it said I needed the fix. So I applied the fix

 

Still only partially encrypted for some reason. I re ran the ssl test script and it still said I need the fix from #46

 

This was without the other patches in place too

 

Same thing here, it seems the fix does not work....

Share this post


Link to post
Share on other sites

Figured out a problem I had.

 

One of my pictures used http: instead of https:

and another external link had the same thing. Changed them and Im back to a fully encrypted connection.

 

Oh and I upgraded to 1.4.7.3

 

HTH

Share this post


Link to post
Share on other sites

Hi,

 

You should try that :

 

FrontController.php

 

__construct() :

 

You MUST have :

global $useSSL;
$useSSL = $this->ssl;

 

 

init() :

 

You MUST have :

global $useSSL;

 

And just after

self::$initialized = true;

 

You MUST have :


if (Tools::usingSecureMode())
$useSSL = $this->ssl = true;

 

 

 

Best regards,

Share this post


Link to post
Share on other sites

got a major issues with 1.4.7. I just deployed the site. every fine until test SSL. PLEASE HELP!!! :(

 

Screen Dump of the contact page! its not even working there..

 

 

Untitled.jpg

 

 

 

 

 

 

 

 

 

 

 

I've checked the source code and there is no resources coming outside a https locations. Code here:

 

 

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>
<title>Contact us - Handbags N Things</title>
<meta name="description" content="Use our form to contact us" />
<meta name="keywords" content="contact, form, e-mail" />
<meta http-equiv="Content-Type" content="application/xhtml+xml; charset=utf-8" />
<meta name="robots" content="index,follow" />
<link rel="icon" type="image/vnd.microsoft.icon" href="https://www.handbagsnthings.com.au/img/favicon.ico?1334015603" />
<link rel="shortcut icon" type="image/x-icon" href="https://www.handbagsnthings.com.au/img/favicon.ico?1334015603" />
<script type="text/javascript">
 var baseDir = 'https://www.handbagsnthings.com.au/';
 var static_token = 'd26cb70e60cd22b0b15ed0327931fc55';
 var token = '5423b7ee9f88e0c349f59666117f1a1f';
 var priceDisplayPrecision = 2;
 var priceDisplayMethod = 0;
 var roundMode = 2;
</script>

 <link href="/themes/theme271/css/global.css" rel="stylesheet" type="text/css" media="all" />
 <link href="/modules/listorgridswitch/listorgridswitch.css" rel="stylesheet" type="text/css" media="all" />

<link href='https://fonts.googleapis.com/css?family=Open+Sans' rel='stylesheet' type='text/css'>
 <script type="text/javascript" src="/js/jquery/jquery-1.4.4.min.js"></script>
 <script type="text/javascript" src="/js/jquery/jquery.easing.1.3.js"></script>
 <script type="text/javascript" src="/js/tools.js"></script>
 <script type="text/javascript" src="/modules/listorgridswitch/listorgridswitch.js"></script>
 <!-- MODULE PM_AdvancedTopMenu || Presta-Module.com -->
<link href="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/css/pm_advancedtopmenu_base.css" rel="stylesheet" type="text/css" media="all" />
<link href="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/css/pm_advancedtopmenu_global.css" rel="stylesheet" type="text/css" media="all" />
<link href="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/css/pm_advancedtopmenu_advanced.css" rel="stylesheet" type="text/css" media="all" />
<link href="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/css/pm_advancedtopmenu.css" rel="stylesheet" type="text/css" media="all" />
<!--[if lt IE 8]>
<script type="text/javascript" src="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/js/pm_advancedtopmenuiefix.js"></script>
<![endif]-->
<script type="text/javascript" src="https://www.handbagsnthings.com.au/modules/pm_advancedtopmenu/js/pm_advancedtopmenu.js"></script>
<link rel="stylesheet" type="text/css" href="https://www.handbagsnthings.com.au/css/jquery.autocomplete.css" />
<script type="text/javascript" src="https://www.handbagsnthings.com.au/js/jquery/jquery.autocomplete.js"></script>
<!-- /MODULE PM_AdvancedTopMenu || Presta-Module.com --><script type="text/javascript">
var _gaq = _gaq || [];
_gaq.push(['_setAccount', 'UA-29015397-1']);
_gaq.push(['_trackPageview', '']);_gaq.push(['_trackPageLoadTime']);
(function() {
var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
})();
</script>
</head>
<body id="contact-form">
<!--[if lt IE 7]><div style='clear:both;height:59px;padding:0 15px 0 15px;position:relative;z-index:10000;text-align:center;'><a href="http://www.microsoft.com/windows/internet-explorer/default.aspx?ocid=ie6_countdown_bannercode"><img src="http://www.theie6countdown.com/images/upgrade.jpg" border="0" height="42" width="820" alt="You are using an outdated browser. For a faster, safer browsing experience, upgrade for free today." /></a></div><![endif]-->
<div id="wrapper1">
<div id="wrapper2">
<div id="wrapper3">
<!-- Header -->
<div id="header">
 <a id="header_logo" href="http://www.handbagsnthings.com.au/" title="Handbags N Things">
  <img class="logo" src="https://www.handbagsnthings.com.au/themes/theme271/img/logo.png" alt="Handbags N Things" />
 </a>
 <div id="header_right">
  <ul id="tmheaderlinks">
<!-- <li style="vertical-align:center"><span style="font-size:10px;">AU</span> <img src="https://www.handbagsnthings.com.au//img/aus-flag.jpg"></img><span style="font-size:10px;">1300 71 73  99</span></li>
-->

<li><span style="font-size:10px;">Phone: 1300 71 73  99</span></li>
<li><a href="http://www.handbagsnthings.com.au/">home</a></li>
<li><a href="http://www.handbagsnthings.com.au/blog">blog</a></li>
<li><a href="http://www.handbagsnthings.com.au/content/11-delivery-guarantee">shipping</a></li>

<li><a href="http://www.handbagsnthings.com.au/prices-drop">specials</a></li>
<!-- <li><a href="http://www.handbagsnthings.com.au/sitemap">sitemap</a></li> -->
<li><a href="http://www.handbagsnthings.com.au/contact-us" class="active">contact us</a></li>
<li><a id="your_account" href="https://www.handbagsnthings.com.au/my-account" title="Your Account">Your Account</a></li>
<li>
   <a href="http://www.handbagsnthings.com.au/?mylogout" title="Log me out">Log out</a>
  </li>

</ul>
<!-- Block user information module HEADER -->
<div id="header_user">
<ul>

<!-- <li id="header_user_info">
 Welcome,
 <span>Malcolm Fitzgerald</span>
  ( <a href="http://www.handbagsnthings.com.au/?mylogout" title="Log me out">Log out</a> )
   <a id="your_account" href="https://www.handbagsnthings.com.au/my-account" title="Your Account">Your Account</a>
</li>
-->
<li id="shopping_cart">
   <a href="https://www.handbagsnthings.com.au/order" title="Your Shopping Cart">My Bag</a>
 <span class="ajax_cart_quantity hidden">(0)</span>
 <!-- <span class="ajax_cart_product_txt hidden">product</span>
 <span class="ajax_cart_product_txt_s hidden">products</span>
 -->
<!-- <span class="ajax_cart_no_product">0</span> -->
 <span class="ajax_cart_no_product"></span>
  </li>
</ul>
</div>
<!-- /Block user information module HEADER --><!-- Block search module TOP -->
<div id="search_block_top">
<form method="get" action="http://www.handbagsnthings.com.au/search" id="searchbox" class="hdSearch ui-formRounded ssg">

 <input class="search_query" type="text" id="search_query_top" name="search_query" value="Search" onFocus="if(this.value=='Search')this.value='';" onBlur="if(this.value=='')this.value='Search';" />
<!-- <a href="javascript:document.getElementById('searchbox').submit();">Go!</a> -->

 <button class="sel-search-button" name="submit" type="submit">Search</button>

 <input type="hidden" name="orderby" value="position" />
 <input type="hidden" name="orderway" value="desc" />

</form>
</div>

 <script type="text/javascript">
// <![CDATA[

 function tryToCloseInstantSearch() {
  if ($('#old_center_column').length > 0)
  {
   $('#center_column').remove();
   $('#old_center_column').attr('id', 'center_column');
   $('#center_column').show();
   return false;
  }
 }
 instantSearchQueries = new Array();
 function stopInstantSearchQueries(){
  for(i=0;i<instantSearchQueries.length;i++) {
   instantSearchQueries[i].abort();
  }
  instantSearchQueries = new Array();
 }
 $("#search_query_top").keyup(function(){
  if($(this).val().length > 0){
   stopInstantSearchQueries();
   instantSearchQuery = $.ajax({
   url: 'https://www.handbagsnthings.com.au/search',
   data: 'instantSearch=1&id_lang=1&q='+$(this).val(),
   dataType: 'html',
   success: function(data){
 if($("#search_query_top").val().length > 0)
 {
  tryToCloseInstantSearch();
  $('#center_column').attr('id', 'old_center_column');
  $('#old_center_column').after('<div id="center_column" class="center_column instant_search_results">'+data+'</div>');
  $('#old_center_column').hide();
  $("#instant_search_results a.close").click(function() {
   $("#search_query_top").val('');
   return tryToCloseInstantSearch();
  });
  return false;
 }
 else
  tryToCloseInstantSearch();
 }
   });
   instantSearchQueries.push(instantSearchQuery);
  }
  else
   tryToCloseInstantSearch();
 });
// ]]>

</script>


<!-- /Block search module TOP --><!-- TMBanner #1 -->
<div class="tmbanner1">
<a href="http://www.handbagsnthings.com.au/content/12-security-guarantee" title="Secure Shopping"><img src="https://www.handbagsnthings.com.au/modules/tmbanner1/secure_chkout.png" alt="" title="" /></a>
<a href="http://www.handbagsnthings.com.au/content/7-return-guarantee" title="40 Day Return"><img src="https://www.handbagsnthings.com.au/modules/tmbanner1/call_us_new.png" alt="" title="" /></a>
<a href="http://www.handbagsnthings.com.au/content/11-delivery-guarantee" title="Free Shipping"><img src="https://www.handbagsnthings.com.au/modules/tmbanner1/tmbanner1.png" alt="" title="" /></a>
</div>
<!-- /TMBanner #1 -->
<!-- MODULE PM_AdvancedTopMenu || Presta-Module.com -->
</div>
<div class="clear"></div>
<div id="adtm_menu">
<div id="adtm_menu_inner">
<ul id="menu">
<li class="li-niveau1 advtm_menu_7 "><a href="http://localhost/presta1.4.7n" title=""  class=" a-niveau1"><span class="advtm_menu_span advtm_menu_span_7"><img src="/modules/pm_advancedtopmenu/menu_icons/7.gif" alt="" title="" class="adtm_menu_icon" /></span></a></li>
<li class="li-niveau1 advtm_menu_1  sub"><a href="http://www.handbagsnthings.com.au/handbags" title="Handbags"  class=" a-niveau1"><span class="advtm_menu_span advtm_menu_span_1">Handbags</span><!--[if gte IE 7]><!--></a><!--<![endif]-->
<!--[if lte IE 6]><table><tr><td><![endif]-->
<div class="adtm_sub">
   <table class="columnWrapTable"><tr>
	 <td class="adtm_column_wrap_td advtm_column_wrap_td_20">
   <div class="adtm_column_wrap advtm_column_wrap_20">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_30">
  <h5><a href="http://www.handbagsnthings.com.au/handbags" title="View All"  class="">View All</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_3">
   <div class="adtm_column_wrap advtm_column_wrap_3">
	 <p><span style="font-size: 10pt;">When Size Matters</span></p>
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_9">
  <h5><a href="http://www.handbagsnthings.com.au/shoulder-bags" title="Shoulder Bags"  class="">Shoulder Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_8">
  <h5><a href="http://www.handbagsnthings.com.au/shopper-bags" title="Shopper Bags"  class="">Shopper Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_7">
  <h5><a href="http://www.handbagsnthings.com.au/satchel-bags" title="Satchel Bags"  class="">Satchel Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_3">
  <h5><a href="http://www.handbagsnthings.com.au/overnight-bags" title="Overnight Bags"  class="">Overnight Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_10">
  <h5><a href="http://www.handbagsnthings.com.au/tote-bags" title="Tote Bags"  class="">Tote Bags</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_4">
   <div class="adtm_column_wrap advtm_column_wrap_4">
	 <p><span style="font-size: 10pt;">Easy Carry</span></p>
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_1">
  <h5><a href="http://www.handbagsnthings.com.au/across-body-bags" title="Across Body Bags"  class="">Across Body Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_6">
  <h5><a href="http://www.handbagsnthings.com.au/saddle-bags" title="Saddle Bags"  class="">Saddle Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_4">
  <h5><a href="http://www.handbagsnthings.com.au/evening-bags" title="Evening Bags"  class="">Evening Bags</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_1">
   <div class="adtm_column_wrap advtm_column_wrap_1">
	 <p><span style="font-size: 10pt;">On the Move</span></p>
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_5">
  <h5><a href="http://www.handbagsnthings.com.au/handheld-bags" title="Handheld Bags"  class="">Handheld Bags</a></h5>				  </div>

					   <div class="adtm_column adtm_column_2">
  <h5><a href="http://www.handbagsnthings.com.au/clutches" title="Clutches"  class="">Clutches</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_13">
   <div class="adtm_column_wrap advtm_column_wrap_13">
	 <p><span style="font-size: 12pt;">More...</span></p>
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_25">
  <h5><a href="http://www.handbagsnthings.com.au/laptop-business-bags" title="Laptop Business Bags"  class="">Laptop Business Bags</a></h5>				  </div>

					    <p><object width="3" height="90" class="mceItemMedia mceItemFlash" data="http://localhost/presta1.4.7n/img/cms/menuspacer.jpg" type="application/x-shockwave-flash"><param name="src" value="http://localhost/presta1.4.7n/img/cms/menuspacer.jpg" /></object></p>
	    <div class="adtm_column adtm_column_17">
  <h5><a href="#" title=""  class="adtm_unclickable"></a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_12">
   <div class="adtm_column_wrap advtm_column_wrap_12">
	 <p><img src="https://www.handbagsnthings.com.au/img/cms/welcomepage.jpg" alt="" width="150" height="198" /></p>
    <div class="adtm_column_wrap_sizer"> </div>
	    </div>
   </td>
   </tr></table>
  </div>
<!--[if lte IE 6]></td></tr></table></a><![endif]-->
</li>
<li class="li-niveau1 advtm_menu_2  sub"><a href="http://www.handbagsnthings.com.au/wallets" title="Wallets"  class=" a-niveau1"><span class="advtm_menu_span advtm_menu_span_2">Wallets</span><!--[if gte IE 7]><!--></a><!--<![endif]-->
<!--[if lte IE 6]><table><tr><td><![endif]-->
<div class="adtm_sub">
   <table class="columnWrapTable"><tr>
	 <td class="adtm_column_wrap_td advtm_column_wrap_td_10">
   <div class="adtm_column_wrap advtm_column_wrap_10">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_13">
  <h5><a href="http://www.handbagsnthings.com.au/ladies-wallets" title="Ladies Wallets"  class="">Ladies Wallets</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_14">
   <div class="adtm_column_wrap advtm_column_wrap_14">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_19">
  <h5><a href="http://www.handbagsnthings.com.au/mens-wallets" title="Mens Wallets"  class="">Mens Wallets</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_17">
   <div class="adtm_column_wrap advtm_column_wrap_17">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_23">
  <h5><a href="http://www.handbagsnthings.com.au/purses" title="Purses"  class="">Purses</a></h5>				  </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_18">
   <div class="adtm_column_wrap advtm_column_wrap_18">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_27">
  <h5><a href="http://www.handbagsnthings.com.au/kids-wallets" title="Kids Wallets"  class="">Kids Wallets</a></h5>				  </div>

	    </div>
   </td>
   </tr></table>
  </div>
<!--[if lte IE 6]></td></tr></table></a><![endif]-->
</li>
<li class="li-niveau1 advtm_menu_4  sub"><a href="#" title="Accessories & Things"  class="adtm_unclickable a-niveau1"><span class="advtm_menu_span advtm_menu_span_4">Accessories & Things</span><!--[if gte IE 7]><!--></a><!--<![endif]-->
<!--[if lte IE 6]><table><tr><td><![endif]-->
<div class="adtm_sub">
   <table class="columnWrapTable"><tr>
	 <td class="adtm_column_wrap_td advtm_column_wrap_td_11">
   <div class="adtm_column_wrap advtm_column_wrap_11">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_28">
  <h5><a href="http://www.handbagsnthings.com.au/accessories" title="Accessories"  class="">Accessories</a></h5>				   <ul class="adtm_elements adtm_elements_28">
				    <li><a href="http://www.handbagsnthings.com.au/sunglasses" title="Sunglasses"  class="">Sunglasses</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/scarves" title="Scarves"  class="">Scarves</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/hats" title="Hats"  class="">Hats</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/gloves" title="Gloves"  class="">Gloves</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/belts" title="Belts"  class="">Belts</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/hair-accessories" title="Hair Accessories"  class="">Hair Accessories</a></li>
				  </ul>
	    </div>

	    </div>
   </td>
	    <td class="adtm_column_wrap_td advtm_column_wrap_td_16">
   <div class="adtm_column_wrap advtm_column_wrap_16">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_22">
  <h5><a href="http://www.handbagsnthings.com.au/jewellery" title="Jewellery"  class="">Jewellery</a></h5>				   <ul class="adtm_elements adtm_elements_22">
				    <li><a href="http://www.handbagsnthings.com.au/earrings" title="Earrings"  class="">Earrings</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/rings" title="Rings"  class="">Rings</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/bracelets" title="Bracelets"  class="">Bracelets</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/necklaces" title="Necklaces"  class="">Necklaces</a></li>
				  </ul>
	    </div>

	    </div>
   </td>
   </tr></table>
  </div>
<!--[if lte IE 6]></td></tr></table></a><![endif]-->
</li>
<li class="li-niveau1 advtm_menu_5  sub"><a href="http://www.handbagsnthings.com.au/shoes" title="Footware"  class=" a-niveau1"><span class="advtm_menu_span advtm_menu_span_5">Footware</span><!--[if gte IE 7]><!--></a><!--<![endif]-->
<!--[if lte IE 6]><table><tr><td><![endif]-->
<div class="adtm_sub">
   <table class="columnWrapTable"><tr>
	 <td class="adtm_column_wrap_td advtm_column_wrap_td_15">
   <div class="adtm_column_wrap advtm_column_wrap_15">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_20">
  <h5><a href="http://www.handbagsnthings.com.au/shoes" title="Shoes"  class="">Shoes</a></h5>				   <ul class="adtm_elements adtm_elements_20">
				    <li><a href="http://www.handbagsnthings.com.au/gumboots" title="Gumboots"  class="">Gumboots</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/flats" title="Flats"  class="">Flats</a></li>
				  </ul>
	    </div>

	    </div>
   </td>
   </tr></table>
  </div>
<!--[if lte IE 6]></td></tr></table></a><![endif]-->
</li>
<li class="li-niveau1 advtm_menu_6  sub"><a href="#" title="Brands"  class="adtm_unclickable a-niveau1"><span class="advtm_menu_span advtm_menu_span_6">Brands</span><!--[if gte IE 7]><!--></a><!--<![endif]-->
<!--[if lte IE 6]><table><tr><td><![endif]-->
<div class="adtm_sub">
   <table class="columnWrapTable"><tr>
	 <td class="adtm_column_wrap_td advtm_column_wrap_td_19">
   <div class="adtm_column_wrap advtm_column_wrap_19">
    <div class="adtm_column_wrap_sizer"> </div>
					   <div class="adtm_column adtm_column_29">
  <h5><a href="#" title=""  class="adtm_unclickable"></a></h5>				   <ul class="adtm_elements adtm_elements_29">
				    <li><a href="http://www.handbagsnthings.com.au/7_cadelle-leather" title="Cadelle Leather"  class="">Cadelle Leather</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/8_jessica-t" title="Jessica T"  class="">Jessica T</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/9_pratten" title="Pratten"  class="">Pratten</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/10_desti-saint" title="Desti Saint"  class="">Desti Saint</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/11_dyna-leather" title="Dyna Leather"  class="">Dyna Leather</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/12_allora-accessories" title="Allora Accessories"  class="">Allora Accessories</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/13_deva-bags" title="Deva Bags"  class="">Deva Bags</a></li>
						    <li><a href="http://www.handbagsnthings.com.au/14_ada-g" title="Ada G"  class="">Ada G</a></li>
				  </ul>
	    </div>

	    </div>
   </td>
   </tr></table>
  </div>
<!--[if lte IE 6]></td></tr></table></a><![endif]-->
</li>
</ul>
<div class="clear"></div>
</div>
</div>
<div>
<!-- /MODULE PM_AdvancedTopMenu || Presta-Module.com -->
 </div>
</div>
<div id="columns">
<!-- Center -->

 <div id="center_column">   




<!-- Breadcrumb -->
<div class="breadcrumb">
<div class="breadcrumb_inner">
<a href="http://www.handbagsnthings.com.au/" title="return to Home">Home</a><span class="navigation-pipe">></span><span class="navigation_page">Contact</span></div>
</div>
<!-- /Breadcrumb --><h1>Customer Service - Contact us</h1>
<br/>
<p class="bold">For questions about an order or for more information about our products.</p>
 <form action="/contact-us" method="post" class="std" enctype="multipart/form-data" id="contact-form">
 <fieldset>
  <h3>Send a message</h3>
  <p class="select">
   <label for="id_contact">Subject Heading</label>
   <select id="id_contact" name="id_contact" onchange="showElemFromSelect('id_contact', 'desc_contact')">
 <option value="0">-- Choose --</option>
	 <option value="2" >Customer service</option>
	 <option value="1" >Webmaster</option>
    </select>
  </p>
  <p id="desc_contact0" class="desc_contact"> </p>
	 <p id="desc_contact2" class="desc_contact" style="display:none;">
  For any question about a product, an order
 </p>
	 <p id="desc_contact1" class="desc_contact" style="display:none;">
  If a technical problem occurs on this website
 </p>
	  <p class="text">
   <label for="email">E-mail address</label>
	 <input type="text" id="email" name="from" value="mf@anatas.com" />
   </p>
    <p class="text">
   <label for="id_order">Order ID</label>
	 <select name="id_order" ><option value="0">-- Choose --</option><option value="4"  >4 -- 03/6/2012</option><option value="5"  >5 -- 03/6/2012</option><option value="6"  >6 -- 03/6/2012</option><option value="7"  >7 -- 03/6/2012</option><option value="8"  >8 -- 03/6/2012</option><option value="9"  >9 -- 03/6/2012</option><option value="10"  >10 -- 03/7/2012</option><option value="11"  >11 -- 04/4/2012</option><option value="12"  >12 -- 04/5/2012</option><option value="13"  >13 -- 04/5/2012</option><option value="14"  >14 -- 04/5/2012</option><option value="15"  >15 -- 04/5/2012</option><option value="16"  >16 -- 04/5/2012</option><option value="17"  >17 -- 04/5/2012</option><option value="18"  >18 -- 04/5/2012</option><option value="19"  >19 -- 04/5/2012</option><option value="20"  >20 -- 04/5/2012</option><option value="21"  >21 -- 04/5/2012</option><option value="22"  >22 -- 04/5/2012</option><option value="23"  >23 -- 04/5/2012</option><option value="24"  >24 -- 04/5/2012</option><option value="25"  >25 -- 04/5/2012</option><option value="26"  >26 -- 04/5/2012</option><option value="27"  >27 -- 04/5/2012</option><option value="28"  >28 -- 04/5/2012</option><option value="29"  >29 -- 04/5/2012</option><option value="30"  >30 -- 04/5/2012</option><option value="31"  >31 -- 04/5/2012</option><option value="32"  >32 -- 04/5/2012</option><option value="33"  >33 -- 04/5/2012</option><option value="34"  >34 -- 04/5/2012</option><option value="35"  >35 -- 04/5/2012</option><option value="36"  >36 -- 04/5/2012</option><option value="37"  >37 -- 04/5/2012</option><option value="38"  >38 -- 04/5/2012</option><option value="39"  >39 -- 04/5/2012</option><option value="40"  >40 -- 04/5/2012</option><option value="41"  >41 -- 04/5/2012</option><option value="42"  >42 -- 04/5/2012</option><option value="43"  >43 -- 04/5/2012</option><option value="44"  >44 -- 04/5/2012</option><option value="45"  >45 -- 04/5/2012</option><option value="46"  >46 -- 04/5/2012</option><option value="47"  >47 -- 04/5/2012</option><option value="48"  >48 -- 04/5/2012</option><option value="49"  >49 -- 04/5/2012</option><option value="50"  >50 -- 04/8/2012</option><option value="51"  >51 -- 04/9/2012</option><option value="52"  >52 -- 04/9/2012</option><option value="53"  >53 -- 04/10/2012</option><option value="54"  >54 -- 04/10/2012</option><option value="55"  >55 -- 04/10/2012</option><option value="56"  >56 -- 04/10/2012</option><option value="57"  >57 -- 04/10/2012</option><option value="58"  >58 -- 04/10/2012</option><option value="59"  >59 -- 04/10/2012</option><option value="60"  >60 -- 04/10/2012</option><option value="61"  >61 -- 04/10/2012</option><option value="62"  >62 -- 04/10/2012</option><option value="63"  >63 -- 04/10/2012</option><option value="64"  >64 -- 04/10/2012</option><option value="65"  >65 -- 04/10/2012</option><option value="66"  >66 -- 04/11/2012</option><option value="67"  >67 -- 04/12/2012</option><option value="68"  >68 -- 04/12/2012</option><option value="69"  >69 -- 04/12/2012</option><option value="70"  >70 -- 04/12/2012</option></select>
   </p>
	 <p class="text">
  <label for="id_product">Product</label>
	 <select name="id_product"><option value="0">-- Choose --</option><option value="6"  >Sed at libero lobortis donec mauris</option><option value="7"  >14K Two Tone Gold Designer Diamond Wedding Ring Set</option><option value="10799"  >TEST Product</option><option value="96"  >Leopard Leather Belt - Belt Size : S: 28" - 30", Colour : Brown</option><option value="10908"  >TEST PRODUCT</option></select>
   </p>
	 <p class="textarea">
  <label for="message">Message</label>
   <textarea id="message" name="message" rows="15" cols="20"></textarea>
 </p>
 <p class="submit">
  <input type="submit" name="submitMessage" id="submitMessage" value="Send" class="button_large" />
 </p>
</fieldset>
</form>
 </div>
<!-- Right -->
 <!-- Breadcrumb -->
<div class="breadcrumb">
<div class="breadcrumb_inner">
<a href="http://www.handbagsnthings.com.au/" title="return to Home">Home</a><span class="navigation-pipe">></span><span class="navigation_page">Contact</span></div>
</div>
<!-- /Breadcrumb --> 

   <div id="right_column" class="column">

   </div>


</div>
</div>
<!-- Footer -->
<div id="footer_wrapper">
 <div id="footer">
  <div id="tmfooterlinks">
<div>
 <h4>Customer Care</h4>
 <ul>
  <li><a href="https://www.handbagsnthings.com.au/contact-form.php">Contact Us</a></li>
  <li><a href="http://www.handbagsnthings.com.au/content/1-delivery-and-returns">Delivery and Returns</a></li>

  <!-- <li><a href="cms.php?id_cms=2">Legal Notice</a></li> -->
  <li><a href="http://www.handbagsnthings.com.au/content/3-terms-and-conditions">Terms and Conditions</a></li>


  <li><a href="http://www.handbagsnthings.com.au/content/4-about-us">About Us</a></li>
  <li><a href="http://www.handbagsnthings.com.au/sitemap">Sitemap</a></li>

 </ul>
</div>

<div>
 <h4>Our Guarantee</h4>
 <ul>
  <li><a href="http://www.handbagsnthings.com.au/content/7-returns-guarantee">Returns Guarantee</a></li>
  <li><a href="http://www.handbagsnthings.com.au/content/12-security-guarantee">Security Guarantee</a></li>
  <li><a href="http://www.handbagsnthings.com.au/content/10-privacy-guarantee">Privacy Guarantee</a></li>
  <li><a href="http://www.handbagsnthings.com.au/content/8-pricing-guarantee">Pricing Guarantee</a></li>
  <li><a href="http://www.handbagsnthings.com.au/content/11-delivery-guarantee">Delivery Guarantee</a></li>
 </ul>
</div>

<div>
 <h4>Our offers</h4>
 <ul>
  <li><a href="https://www.handbagsnthings.com.au/new-products.php">New products</a></li>
  <!-- <li><a href="best-sales.php">Top sellers</a></li> -->
  <li><a href="https://www.handbagsnthings.com.au/prices-drop.php">Specials</a></li>
  <!-- <li><a href="https://www.handbagsnthings.com.au/manufacturer.php?list=yes">Brands</a></li> -->
  <!-- <li><a href="supplier.php">Suppliers</a></li> -->
 </ul>
</div>
<div>
 <h4>Follow Us</h4>
 <ul>
  <li class="socialfooter_facebook"><a href="https://www.facebook.com/HandbagsNThings" target="_blank">Facebook</a></li>
  <li class="socialfooter_twitter"><a href="https://twitter.com/#!/__Handbags" target="_blank">Twitter</a></li> 
  <li class="socialfooter_blog"><a href="http://www.handbagsnthings.com.au/blog/" target="_blank">Blog</a></li>
 </ul>
</div>

<div>
 <h4>Your Account</h4>
 <ul>
  <li><a href="https://www.handbagsnthings.com.au/my-account.php">Your Account</a></li>
  <li><a href="https://www.handbagsnthings.com.au/identity.php">Personal information</a></li>
  <li><a href="https://www.handbagsnthings.com.au/addresses.php">Addresses</a></li>
  <li><a href="https://www.handbagsnthings.com.au/discount.php">Discount</a></li>
  <li><a href="https://www.handbagsnthings.com.au/history.php">Order history</a></li>
 </ul>
</div>

<div> 
 <ul class="sec">

  <li>
   <img src="https://www.handbagsnthings.com.au/img/icons/spacer.png" alt=""  />
   </li>
    <li>
 <iframe src="//www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.handbagsnthings.com.au&send=false&layout=button_count&width=80&show_faces=false&action=like&colorscheme=light&font&height=35" scrolling="no" frameborder="0" style="border:none; overflow:hidden; width:80px; height:35px;" allowTransparency="true"></iframe>
   </li>
   <li>
   <img src="https://www.mysecuressls.com/images/seals/crazy_secure_04.png" alt="SSL Certificate Authority" width="118" height="55" style="border:0px">
   </li>
   <li>
 <img src="https://www.handbagsnthings.com.au/img/icons/credit_card_logos.png" alt=""  />
   </li>
   <li>
 <img src="https://www.handbagsnthings.com.au/img/icons/spacer.png" alt=""  />
   </li>

   <!-- <li>
 <img src="https://www.handbagsnthings.com.au/img/icons/auspost_logo.jpg" alt=""  />
   </li>
   -->
 </ul>
</div>
</div><img src="/modules/cron/cron_traffic.php?time=1334192911" alt="cron module by samdha.net" width="0" height="0" style="border:none;margin:0; padding:0"/>
 </div>
</div>
</div>
</div>
</body>
</html>

 

 

 

OMG. this is SOOO frustrating.... I've made a number of changes to the core files as mentioned above.. see.

 

Front Controller:

 


else if (Configuration::get('PS_SSL_ENABLED') AND Tools::usingSecureMode() AND !($this->ssl))
{
header('HTTP/1.1 301 Moved Permanently');
header('Cache-Control: no-cache');
header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
exit();
}

 

 

Header.php:

 



// Save the value of $useSSL ($useSSL will be overwritten by FrontController::__contruct())
$hackSSL = false;
if (isset($useSSL) and $useSSL){
   $hackSSL = true;
  }

$controller = new FrontController();

// If $useSSL was set to "true", then overwrite its value to true
if ($hackSSL){
   $useSSL = $controller->ssl = true;
  }

$controller->displayHeader();

/*
$controller = new FrontController();
$controller->displayHeader();
*/


and in Tools.php:


[code]


public static function usingSecureMode()
{
/* edit by Ha!*!*y */
if (isset($_SERVER['HTTPS']))
{
 return ($_SERVER['HTTPS'] == 1 || strtolower($_SERVER['HTTPS']) == 'on');
}
// $_SERVER['SSL'] exists only in some specific configuration
if (isset($_SERVER['SSL']))
{
 return ($_SERVER['SSL'] == 1 || strtolower($_SERVER['SSL']) == 'on');
}
if(isset($_SERVER['SCRIPT_URI']))
{
 //preg_match('^https', $_SERVER['SCRIPT_URI'])
 return ((strpos($_SERVER['SCRIPT_URI'], 'https') === 0) ? true : false);
}
return false;
}

 

 

I'm pretty lost now what to do...

 

 

When you click on any of the links from the HTML source it take you to the unresticted crossed out LOCK. but if you copy the link say:

 [url="https://www.handbagsnthings.com.au/img/favicon.ico?1334015603"]https://www.handbagsnthings.com.au/img/favicon.ico?1334015603[/url] 

 

and paste it into a new tab this page looks like this and the LOCK is green see:

 

Untitled2.jpg

 

 

 

[/code]

Share this post


Link to post
Share on other sites

I just went to your site, and It seems ok in FF, Chrome and IE9 for me. Went to log in and contact page, all seems to be working fine

 

edit, I did not create an account to check afterwards though

Share this post


Link to post
Share on other sites

I am having the same problem.. My SSL is fine and Authorize.net says on their end, everything is great.. My site is www.dameliecandles.com. Could someone please help me make my site live? I've never experienced anything like this with other sites I've designed.. I've tried both fixes in the frontcontroller.php and the header.php fix. Still not working :(

Share this post


Link to post
Share on other sites

I used both tomerg3 and CarlFavre solutions and it resolved the problem.

Just with CarlFavre solution it didnt work.

Didnt tryied tomerg3 solution alone.

I am using both.

 

Thank you.

Share this post


Link to post
Share on other sites

I also tried them both and it unfortunately did not work. I am upgrading right now to the latest version of Prestashop to see if this helps.. If not, I am at my wits end and am moving on to another cart as I have four clients experiencing the same problem if I cannot fix this one..

Share this post


Link to post
Share on other sites

Is it just your authorize.net not working? Hay you tried paypal or any other method and they work?

Share this post


Link to post
Share on other sites

Has this issue been fixed by anyone? tried each combination for the fixes listed here but still having issues. Either Authorize.net returned a malformed response, aborted. or page redirects to quick-order?isPaymentStep=true on "make payment" click.

 

I am using authorizaim module v 1.3 and prestashop v4.7.0

 

My ssl is setup correctly as well as my auth.net information

 

Please advise solution if there is one

 

Thank you

Edited by dezignated (see edit history)

Share this post


Link to post
Share on other sites

Vincent,

 

I have already made this change. As the change did fix the paypal redirection problem with ssl, the authorize.net issue still persists.

Assuming other people are having this issue as well, I am going to try to do an upgrade to the newest version of prestashop to see if this resolves the problem. I will report the outcome.

If anyone has any other information that may help I would appreciate it.

 

Thank you for your time

Share this post


Link to post
Share on other sites

Hi, Guys

does not work, does not activate ssl

how to make?

I also tried to replace the files:FrontController.php and header.php

with those of the version 1.4.8.2 but does not work!

help me?

Share this post


Link to post
Share on other sites

Hello all.

I was having problems getting the PayPal redirect to work in sandbox mode with SSL.

I am running Prestashop 1.4.7.3 with SSL. Sandbox tests are enable as is SSL.

 

The original problem was that when I clicked the confirm order button with PayPal selected, I was being redirected back to the page with the confirm order button.

 

I implemented the presto change update to address this issue (http://www.presto-changeo.com/en/content/10-fixing-paypal-problems).

 

Now the redirect login into the sandbox site is not working - I am redirected to the sandbox login page (I am using standard checkout with the PayPal API). I've re-check the credentials and they are correct.

 

QUESTION 1: Does anyone know where these are stored in PrestaShop so I can attempt to verify that they are being correctly stored?

 

NOTE: If I am physically logged into the Sandbox website by going to the developer.paypal.com site directly, my PrestaShop transaction completes successfully.

 

QUESTION 2: Is there a stable and version of the PayPal module available for use aside from the one included with 1.4.7.3? I saw mention that the version of the PayPal module used with pre-1.4.7.0 was more stable. Can this be made available for use with 1.4.7.3?

 

I don't know if my current is related to your various SSL issues (because I am not receiving an error log, even with extended logging in place), but I can see my inability to go live being delayed because even if the sandbox login issues are addressed, I may simply run into the problems you are all experiencing.

 

It's discouraging because the tomer carl and happy fixes could all apply to my installation (just looking at their recommended fixes and the current state of my code).

 

Any assistance would be appreciated.

Share this post


Link to post
Share on other sites

Much appreciated for this fix!!! I was just to open my store..doing test orders and found out that COD and Paypal modules were not working. I applied the fix and now we are good to go. However, it is interesting that (as shown in attachment) COD module still isn't shown as available...

post-288795-0-49545400-1339274723_thumb.png

Share this post


Link to post
Share on other sites

Hi there,

 

I have posted an SSL problem for several times now on the forge... but untill now not one normal answer or just an indication

from somebody who is addressing this issue..

 

I can not enable prestashop in the backoffice.

It's prestashop version 1.4.9 and every fix i have tried does not seem te fix this bug I'm having.

 

This version of prestashop has been installed on a server with a loadbalancer and seems to be the issue.

The load balancer gives different ip's and I think that's whats causing the problem.

 

I need to have this fixed...and hope there si somebody here that has experienced the same problem and knows what to do.....

Is there a way to bypass the https ip check in the Tools.php or FrontController.php to have my problem fixed or

do i need to contact the host AGAIN ;) and ask them why there server returns different IP's....???

 

Kind Regards,

 

 

Tjebz...

Share this post


Link to post
Share on other sites

I just had to point a 1.4.7 user to it, while it was solved, it still affects everyone who is using that version....

Share this post


Link to post
Share on other sites

Hello Everyone,

 

I was facing similar issue with SSL in latest version of Prestashop i.e. 1.5.4.1 and in my case the issue is sorted out by modifying/commenting the first part of the check SSL or Secure Mode condition in Frontcontroller.php file:

 

File: ROOT/classes/controller/Frontcontroller.php

Line #s: 117-133

 

/*
 if ($this->ssl && !Tools::usingSecureMode() && Configuration::get('PS_SSL_ENABLED'))
 {
  header('HTTP/1.1 301 Moved Permanently');
  header('Cache-Control: no-cache');
  header('Location: '.Tools::getShopDomainSsl(true).$_SERVER['REQUEST_URI']);
  exit();
 }
 else
 */
 if (Configuration::get('PS_SSL_ENABLED') && Tools::usingSecureMode() && !($this->ssl))
 {
  header('HTTP/1.1 301 Moved Permanently');
  header('Cache-Control: no-cache');
  header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
  exit();
 }

 

Thanks to "tomerg3" for idea :-)

  • Like 1

Share this post


Link to post
Share on other sites

Hi Rohans, could you explain the problem that you were facing this time? Was it exactly the same or a little different? This would be important as this thread is concerning 1.4.7 and I would rather have a new thread for a similar issue and fix for 1.5.4.1.

Share this post


Link to post
Share on other sites

Is there any fix for prestashop 1.5.6.2? when I enable SSL on shop Add to cart button stops working and without enabling SSL add to cart button is working fine

Share this post


Link to post
Share on other sites

Hello Everyone,

 

I was facing similar issue with SSL in latest version of Prestashop i.e. 1.5.4.1 and in my case the issue is sorted out by modifying/commenting the first part of the check SSL or Secure Mode condition in Frontcontroller.php file:

 

File: ROOT/classes/controller/Frontcontroller.php

Line #s: 117-133

 

/*
  if ($this->ssl && !Tools::usingSecureMode() && Configuration::get('PS_SSL_ENABLED'))
  {
   header('HTTP/1.1 301 Moved Permanently');
   header('Cache-Control: no-cache');
   header('Location: '.Tools::getShopDomainSsl(true).$_SERVER['REQUEST_URI']);
   exit();
  }
  else
  */
  if (Configuration::get('PS_SSL_ENABLED') && Tools::usingSecureMode() && !($this->ssl))
  {
   header('HTTP/1.1 301 Moved Permanently');
   header('Cache-Control: no-cache');
   header('Location: '.Tools::getShopDomain(true).$_SERVER['REQUEST_URI']);
   exit();
  }
Thanks to "tomerg3" for idea :-)

 

Are you able to use SSL now? Also will it work on 1,5,6.2 ?

Share this post


Link to post
Share on other sites

What version are you using?

Share this post


Link to post
Share on other sites

I'm using prestashop version 1.5.3.1 and Authorize.net 1.5.4.

 

When transaction happening, im receiving the following error,

An error occurred while trying to report this transaction to the merchant. An e-mail has been sent to the merchant informing them of the error. The following is the result of the attempt to charge your credit card.

The gateway no longer supports the requested method of integration.


Authorize.net returned a malformed response, aborted.

Share this post


Link to post
Share on other sites

Strange, I have never seen that error before. As for this bug in this post, you are talking about something totally different. This was a bug specific to 1.4.7

Share this post


Link to post
Share on other sites

×
×
  • Create New...

Important Information

Cookies ensure the smooth running of our services. Using these, you accept the use of cookies. Learn More