- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
- 90
- 91
- 92
- 93
- 94
- 95
- 96
- 97
- 98
- 99
- 100
- 101
- 102
- 103
- 104
- 105
- 106
- 107
- 108
- 109
- 110
- 111
- 112
- 113
- 114
- 115
- 116
- 117
- 118
- 119
- 120
- 121
- 122
- 123
- 124
- 125
- 126
- 127
- 128
- 129
- 130
- 131
- 132
- 133
- 134
- 135
- 136
- 137
- 138
- 139
- 140
- 141
- 142
- 143
- 144
- 145
- 146
- 147
- 148
- 149
- 150
- 151
- 152
- 153
- 154
- 155
- 156
- 157
- 158
- 159
- 160
- 161
- 162
- 163
- 164
- 165
- 166
- 167
- 168
- 169
- 170
- 171
- 172
- 173
- 174
- 175
- 176
- 177
- 178
- 179
- 180
- 181
- 182
- 183
- 184
- 185
- 186
- 187
- 188
- 189
- 190
- 191
- 192
- 193
- 194
- 195
- 196
- 197
- 198
- 199
- 200
- 201
- 202
- 203
- 204
- 205
- 206
- 207
- 208
- 209
- 210
- 211
- 212
- 213
- 214
- 215
- 216
- 217
- 218
- 219
- 220
- 221
- 222
- 223
- 224
- 225
- 226
- 227
- 228
- 229
- 230
- 231
- 232
- 233
- 234
- 235
- 236
- 237
- 238
- 239
- 240
- 241
- 242
- 243
- 244
- 245
- 246
- 247
- 248
- 249
- 250
- 251
- 252
- 253
- 254
- 255
- 256
- 257
- 258
- 259
- 260
- 261
- 262
- 263
- 264
- 265
- 266
- 267
- 268
- 269
- 270
- 271
- 272
- 273
- 274
- 275
- 276
- 277
- 278
- 279
- 280
- 281
- 282
- 283
- 284
- 285
- 286
- 287
- 288
- 289
- 290
- 291
- 292
- 293
- 294
- 295
- 296
- 297
- 298
- 299
- 300
- 301
- 302
- 303
- 304
- 305
- 306
- 307
- 308
- 309
- 310
- 311
- 312
- 313
- 314
- 315
- 316
- 317
- 318
- 319
- 320
- 321
- 322
- 323
- 324
- 325
- 326
- 327
- 328
- 329
- 330
- 331
- 332
- 333
- 334
- 335
- 336
- 337
- 338
- 339
- 340
- 341
- 342
- 343
- 344
- 345
- 346
- 347
- 348
- 349
- 350
- 351
- 352
- 353
- 354
- 355
- 356
- 357
- 358
- 359
- 360
- 361
- 362
- 363
- 364
- 365
- 366
- 367
- 368
- 369
- 370
- 371
- 372
- 373
- 374
- 375
- 376
- 377
- 378
- 379
- 380
- 381
- 382
- 383
- 384
- 385
- 386
- 387
- 388
- 389
- 390
- 391
- 392
- 393
- 394
- 395
- 396
- 397
- 398
- 399
- 400
- 401
- 402
- 403
- 404
- 405
- 406
- 407
- 408
- 409
- 410
- 411
- 412
- 413
- 414
- 415
- 416
- 417
- 418
- 419
- 420
- 421
- 422
- 423
- 424
- 425
- 426
- 427
- 428
- 429
- 430
- 431
- 432
- 433
- 434
- 435
- 436
- 437
- 438
- 439
- 440
- 441
- 442
- 443
- 444
- 445
- 446
- 447
- 448
- 449
- 450
- 451
- 452
- 453
- 454
- 455
- 456
- 457
- 458
- 459
- 460
- 461
- 462
- 463
- 464
- 465
- 466
- 467
- 468
- 469
- 470
- 471
- 472
- 473
- 474
- 475
- 476
- 477
- 478
- 479
- 480
- 481
- 482
- 483
- 484
- 485
- 486
- 487
- 488
- 489
- 490
- 491
- 492
- 493
- 494
- 495
- 496
- 497
- 498
- 499
- 500
- 501
- 502
- 503
- 504
- 505
- 506
- 507
- 508
- 509
- 510
- 511
- 512
- 513
- 514
- 515
- 516
- 517
- 518
- 519
- 520
- 521
- 522
- 523
- 524
- 525
- 526
- 527
- 528
- 529
- 530
- 531
- 532
- 533
- 534
- 535
- 536
- 537
- 538
- 539
- 540
- 541
- 542
- 543
- 544
- 545
- 546
- 547
- 548
- 549
- 550
- 551
- 552
- 553
- 554
- 555
- 556
- 557
- 558
- 559
- 560
- 561
- 562
- 563
- 564
- 565
- 566
- 567
- 568
- 569
- 570
- 571
- 572
- 573
- 574
- 575
- 576
- 577
- 578
- 579
- 580
- 581
- 582
- 583
- 584
- 585
- 586
- 587
- 588
- 589
- 590
- 591
What if when switching to https, 1C:Enterprise ceases to connect to the online store {SEO-Shop}, OpenCart 2.x, 3.x, ocStore
Working on the module “data Sharing” we found several solutions to this problem.
1. To stay on http
You need to leave http specifically for link exchange, and the whole site to https. But if you just take and use the http link in the setup of exchange, then nothing will happen, because it will be executed 301 redirect to a link with https.
Therefore, you need to add an exception for a link to share the service via http.
1.1. You can choose to add an exception for link exchange
On the nginx side, do the following:
server {
listen *: 80;
server_name www. {domain} {domain};
location /export/neoseo_exchange1c.php {
client_max_body_size 132m;
// here we directly transfer control for Apache
proxy_pass http://127.0.0.1:88/export/neoseo_exchange1c.php;
include / etc / nginx / proxy_params;
}
location / {
return 301 https: // $ host $ request_uri;
}
}
The option for .htaccess is as follows:
Rewriteengine on
RewriteBase /
RewriteCond% {HTTP: SSL}! = 1 [NC]
RewriteCond% {REQUEST_URI}! ^ Export / neoseo_exchange1c.php
RewriteRule ^ ([^?] *) Https://demo.neoseo.com.ua/$1 [R = 301, L]
In order for the rules written in .htaccess to work, you must disable redirection from http to https on the hosting.
1.2. You can ask the host to help configure exceptions
If you do not understand .htaccess or nginx configurations, ask the host to read this link and configure your hosting so that the exchange link is not redirected to https.
2. Make friends with https
2.1. Modify 1C: Enterprise
If you have the opportunity to look into the 1C: Enterprise configurator, then you can find the following lines there:
Connection = Undefined;
Attempt
Connection = New HTTP Connection (
Connection Options.Server,
Connection Options.Port,
Connection Parameters. User,
Connection Settings: Password,
Connection Parameters. Proxy,
Connection Settings: Secure Connection
);
An exception
Add Description Errors (Description Errors,
Description of Exceptional Errors (
String FunctionsCustomerServer.SubstituteParametersInString (
Nstr ("ru = 'Failed to establish connection with server% 1:% 2. Verify that the server address, port, username and password are correct.'"),
Connection Options.Server,
Connection Parameters. Port)));
Connection = Undefined;
End of the attempt;
and replace with these
Connection = Undefined;
ssl = New Secure Connection OpenSSL (New Client Certificate Windows (), New Certificate Authority Centers Windows ()); // as_not typical for https
Attempt
Connection = New HTTP Connection (
Connection Options.Server,
Connection Options.Port,
Connection Parameters. User,
Connection Settings: Password,
Connection Parameters. Proxy,
,
? (Connection Options. Protected Connection, ssl, Undefined)
);
An exception
Add Description Errors (Description Errors,
Description of Exceptional Errors (
String FunctionsCustomerServer.SubstituteParametersInString (
Nstr ("ru = 'Failed to establish connection with server% 1:% 2. Verify that the server address, port, username and password are correct.'"),
Connection Options.Server,
Connection Parameters. Port)));
Connection = Undefined;
After that, the link with https should work.
2.2. Attach a certificate in 1C: Enterprise
You can also try to put a certificate in 1C: Enterprise itself. This is done as follows:
First you need to add the certificate to the certificate store in 1C: Enterprise in the bin folder of the cacert.pem file.
1. Download the appropriate distribution
2. After installation, you need to specify a variable, open the command line under the administrator and enter the command
set OPENSSL_CONF = D: \ OpenSSL-Win32 \ bin \ openssl.cfg
After that, the program starts to work.
3. In the browser, open the URL where you can see the certificate, open the certificate chain.
In our case, Firefox was used, so the actions for it will be described later.
We open the certificate - Read more.
4. We save each certificate from the chain 2 times in different formats
Better to use short, clear paths.
1st format
4.1 Export, select the file type X.509 Certificate in PEM format (* .crt: *. Pem)
repeat for all chain certificates
2nd format
4.1 Export, select the file type X.509 Certificate in DER format (* .der)
repeat for all chain certificates
Next, open the command line
enter the command, go to the folder with Open ssl
cd c: \ OpenSSL-Win64 \ bin
Next, we create a signature
c: \ OpenSSL-Win64 \ bin> openssl x509 -inform der -in D: \ p.der -out D: \ textcert.pem -text -fingerprint -md5
The generated signature and certificate are displayed on the screen.
Through the mark, select the result, copy and add to the end of the file
C: \ Program Files (x86) \ 1cv8 \ 8.3.5.1460 \ bin \ cacert.pem
Formatted result formatted
Making a headline
The name for the title is better taken from the certificate to be added.
View Certificate - Select Certificate - Subject CN = Symantec Class 3 EV SSL CA - G3 at the bottom
take the header from it
Symantec Class 3 EV SSL CA - G3
transfer MD to the title
It turns out:
Symantec Class 3 EV SSL CA - G3
MD5 Fingerprint = DF: 51: CE: 65: BC: 43: F9: 1B: 3E: 1E: CF: 48: AB: 23: 36: 25
leave the rest below
Next, use the notepad to open the saved certificate in * .crt format, copy its contents
Insert cacert.pem at the end of the file