After you have installed SSL certificate for your eCommerce site and the HTTPS version of your domain is successfully accessible, Magento doesn’t automatically use HTTPS for some of the important pages across the site, such as /checkout/cart/, /customer/account/, etc.
Enable HTTPS for your Magento store
You have to explicitly enable HTTPS for your Magento store if you didn’t select HTTPS during installation.
In the Admin panel: System -> Configuration -> General -> Web -> Secure
- Base URL – https://www.yoursite.com
- Use Secure URLs in Frontend – Yes
- Use Secure URLs in Admin – Yes
Now Magento should be using HTTPS:// for all the important frontend pages (/customer/account/, /checkout/onepage/, etc.) and across the entire backend Admin pane.
Wait, /checkout/cart/ is still not HTTPS!
Yep. You have to do one more thing to make sure /checkout/cart/ is also automatically HTTPS.
Edit app/code/core/Mage/Checkout/etc/config.xml, find this:
And add this line immediately below:
So that it looks like this:
<frontend> <secure_url> <checkout_cart>/checkout/cart</checkout_cart> <checkout_onepage>/checkout/onepage</checkout_onepage> <checkout_multishipping>/checkout/multishipping</checkout_multishipping> </secure_url>
Refresh all the cache and Magento should be using HTTPS on /checkout/cart/ now.
Grab the latest premium Magento theme: Avalanche to kick-start your store! Get to know it and you will definitely look no further. Use coupon code: