Home › Forums › Community Forum › Error #10002. Security error. Security header
This topic contains 29 replies, has 3 voices. Last updated by Cristián Lávaque 3 years, 6 months ago.
Topic Author | Topic |
---|---|
Posted: Saturday May 4th, 2013 at 6:15 pm #49223 | |
|
|
I have installed an SSL cert yet users are still getting this error message when trying to make a purchase using pro forms on my membersip options page |
List Of Topic Replies
Author | Replies |
---|---|
Author | Replies |
Posted: Saturday May 4th, 2013 at 6:20 pm #49224 | |
|
|
Yes I have added the custome field s2member_force_ssl = yes |
|
Posted: Monday May 6th, 2013 at 7:03 pm #49299 | |
|
|
Thank you for reporting this important issue.
Could you post a link to the page on which this happening? |
|
Posted: Tuesday May 7th, 2013 at 2:05 am #49347 | |
|
|
Posted: Tuesday May 7th, 2013 at 8:52 pm #49421 | |
|
|
Thanks for the link, but I’m unable to connect to your site right now on two separate internet connections. I’ll try again later. |
|
Posted: Wednesday May 8th, 2013 at 4:08 pm #49507 | |
|
|
Thanks. This issue has remained unresolved for several weeks. Would really appreciate it being looked in to. |
|
Posted: Wednesday May 8th, 2013 at 7:36 pm #49520 | |
|
|
Thanks for your patience.I took a look and it appears that your theme is loading in some resources after s2Member forces SSL. Can you try the first two steps in Common Troubleshoot Tips here, please? |
|
Posted: Thursday May 9th, 2013 at 5:48 pm #49610 | |
|
|
Thanks. I’ve tried these two steps before. No luck. |
|
Posted: Friday May 10th, 2013 at 3:23 am #49675 | |
|
|
So you changed the theme to the default one and deactivated every plugin other than s2Member, and you still got that error when you tested again? That’s odd, we haven’t seen this happen before, a clean installation of WordPress with just s2Member doesn’t have that problem. Could you install in a separate directory, a new copy of WordPress, just add s2Member, create a page with the pro-form and the s2member_force_ssl custom field, and reproduce it there? Please send us the info to this test installation so we can see it and investigate what the reason may be, and let us know when you submitted it. s2Member® » Private Contact Form |
|
Posted: Tuesday May 14th, 2013 at 5:17 pm #49971 | |
|
|
So the only way to rectify this issue is to change my entire theme? |
|
Posted: Wednesday May 15th, 2013 at 1:15 am #49998 | |
|
|
So you confirmed that the problem is in the theme? Okay. No, you don’t necessarily have to change it to another theme, but you will need to improve it so it doesn’t cause errors. Once you identified what the problem with the custom theme is, you can customize it some more to fix it. |
|
Posted: Saturday May 25th, 2013 at 12:08 pm #50626 | |
|
|
So I changed the theme and the problem still exists! |
|
Posted: Saturday May 25th, 2013 at 12:13 pm #50627 | |
|
|
AND I deactivated all plugins! |
|
Posted: Saturday May 25th, 2013 at 9:22 pm #50644 | |
|
|
Okay. To the default theme? Then I’d like to take another look at it. I see that you’re using a custom theme again. I want to do a test purchase to see this error, but I don’t want to change your theme or deactivate your plugins in the live site, unless you tell me you have a backup and are okay with me doing it for the tests. Or did/could you create a separate test installation of WP, with only s2Member, as suggested in the troubleshooting tips? I’d create a test page, forcing SSL, with a pro-form like the one in your Membership Options Page, but for 1 cent, and checkout with my own card to reproduce the problem. Please let me know if there’s something else I should do to reproduce the 10002 error you get. I just tried the login credentials you sent before, but couldn’t access tha admin area. Could you resend working credentials so I login to test this? Please leave me a reply here letting me know you sent it. Thanks! s2Member® » Private Contact Form |
|
Posted: Sunday May 26th, 2013 at 7:35 pm #50680 | |
|
|
Thanks for the email. I did a couple of test purchases and saw the error. I tried with the default theme too, but didn’t deactivate the plugins, since you didn’t specify in your email that I could do that too. I searched a bit your error and found another thread where a site owner was getting this same error from PayPal. The reason for him was using an API certificate instead of signature, changing to the signature solved it. https://www.s2member.com/forums/topic/security-header-is-not-valid-2/#post-46394 Could you please verify that’s not the case for you? Thanks. |
|
Posted: Monday May 27th, 2013 at 5:23 am #50704 | |
|
|
Hi Christian, I am using an API signature |
|
Posted: Wednesday May 29th, 2013 at 2:48 am #50790 | |
|
|
Okay. I’ll ask Jason about that PayPal error, because I’m not sure what else is causing it. Have you asked PayPal support about it? |
|
Posted: Wednesday May 29th, 2013 at 8:21 am #50815 | |
|
|
No because the problem only started once I upgraded to s2 member Pro. I will get in touch with them but if not is there the possibility of a refund (since it has not been working for over a month) ? |
|
Posted: Thursday May 30th, 2013 at 1:43 am #50904 | |
|
|
That error is one you’re getting with the pro-form when choosing one of the cards to pay, processed by PayPal Pro, which is not something that would happen with the free version of s2Member. I went back to your site’s configuration and see that you don’t have any credentials entered for the PayFlow API. [hilite path]Dashboard -› s2Member® -› PayPal® Options -› PayFlow™ Account Details[/hilite] It didn’t ring a bell before, but just to check: does it mean your PayPal Pro uses the PayPal Pro API? Knowledge Base » PayPal Pro, PayFlow, DPRP, Express Checkout Just to make sure, because I assumed it before but didn’t verify: do you have PayPal Pro? You can’t get paid on your site without it or Authorize.Net. You aren’t required to have PayPal Pro to use the s2Member pro-form, but in that case you’d remove the card options and only leave PayPal so the payment is processed through PayPal’s Express Checkout. |
|
Posted: Thursday May 30th, 2013 at 1:29 pm #50958 | |
|
|
I have another domain with an entirely different theme and less plugins. What I’m going to do is start using s2member pro on that see if they problem remains. Will let you know. |
|
Posted: Thursday May 30th, 2013 at 11:12 pm #50975 | |
|
|
since upgrading to s2 member Pro new users have been unable to register even as a free subscriber. I’m guessing this could be part of the problem. |
|
Posted: Friday May 31st, 2013 at 6:27 pm #51078 | |
|
|
I tried to test the free registration, but when I attempt to load your site, I get a redirection problem to wp-signup.php and can’t open it. This wasn’t happening the last time I visited it. Could you let me know when it’s online again so I can try the free registration?
Cool. |
|
Posted: Tuesday Jun 11th, 2013 at 4:31 pm #51783 | |
|
|
Hi so i’ve installed s2 on to a new domain under a new root directory. This website does not have buddypress and the complexities of my previous theme. S2 member however is not protecting my files at all. Heres is an example of the code I am using. Here is the link It worked initially, so hopefully it’s something simple. (Also when i log in i get a warning that the page is not encrypted). |
|
Posted: Wednesday Jun 12th, 2013 at 5:40 am #51809 | |
|
|
Did you set the Membership Options Page? Restrictions aren’t active until that page is set. [hilite path]Dashboard -› s2Member® -› General Options -› Membership Options Page[/hilite]
Could you show me a screenshot of it?
If you need me to take a look, I’ll need the login to the new installation, please. s2Member® » Private Contact Form |
|
Posted: Wednesday Jun 12th, 2013 at 2:29 pm #51837 | |
|
|
Great, I put the membership options page as private and then messed it all up. Any ideas why the custom caps is not being protected? The code is; |
|
Posted: Thursday Jun 13th, 2013 at 4:14 am #51867 | |
|
|
I don’t understand. You found that was the reason you were having trouble and solved it? Or you did that now and have a new problem?
You mean something that you set to require a ccap is still being shown to someone that doesn’t have it? I can only think of the Membership Options Page not being set. Or you are logged in to the admin account and then no restriction is applied.
I tried the URL and was redirected to the Membership Options Page, and the vars say it requires the ccap “answers”, so the restriction is working.
By the way, I see everything being served over HTTPS, but I keep getting a warning about it. Maybe there’s something wrong with the SSL certificate? And you don’t really need to secure every page, just the ones from which the user will submit sensitive info would be enough (e.g. payment page). |
This topic is closed to new replies. Topics with no replies for 2 weeks are closed automatically.