gravatar

Edmonds Commerce are a UK based E-Commerce web development agency. We are based in Shipley which is in Yorkshire near Leeds and Bradford.

Our primary specialism is Magento and Magento2 and other PHP based E-Commerce platforms such as OpenCart.

In terms of technology we are very strong in PHP, MySQL, Linux, HTML, CSS and Javascript.

Magento Checkout Empties Basket + Solution

Jun 2, 2009 · 1 minute read
Category: magento

A client recently experienced an issue where certain customers were having issues with the checkout redirecting people to the homepage instead of letting them checkout as normal.

After doing some research the client found that the issue is related to a security setting in Magento. Magento uses the IP address of a user as part of its session validation. This is perfectly reasonable approach and helps protect against XSS among other things. However it seems certain ISP’s (AOL as usual) actually rotate the IP’s that customers connections come from, which makes Magento think that the session is being hijacked.

You can disable this security setting by doing the following:

Change the Session Validation settings in the Magento Admin, found under System > Configurations > Web, to ‘no’ on everything except “Validate HTTP_USER_AGENT.” After doing this, go to System > Cache Management and refresh the configuration cache to apply the changes.
(originally found here)

I decided to blog about this one as it seems this would be a good idea to change on all Magento installations and by blogging about it I will remember.


Tags: magentocheckout