when clicking the "confirm order" button, I get a security alert, where the customer is asked if he wants to continue or not. This is not good because the customer has just filled out a form with his CC info in the previous step. he will most likely abort his payment when he gets this message.

Here is my includes/configure.php:

define('HTTP_SERVER', 'http://www.xx.se/kite'); // eg, http://213.115.66.62 - should not be empty for productive servers
define('HTTPS_SERVER', 'https://www.wopsa3.com/~xx/kite'); // eg, https://213.115.66.62 - should not be empty for productive servers
define('ENABLE_SSL', true); // secure webserver for checkout procedure?
define('HTTP_COOKIE_DOMAIN', 'http://www.xx.se/kite');
define('HTTPS_COOKIE_DOMAIN', 'https://www.wopsa3.com/~xx/kite');
define('HTTP_COOKIE_PATH', '/');
define('HTTPS_COOKIE_PATH', '/');
define('DIR_WS_HTTP_CATALOG', '/');
define('DIR_WS_HTTPS_CATALOG', '/');
define('DIR_WS_IMAGES', 'images/');
define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');
define('DIR_WS_INCLUDES', 'includes/');
define('DIR_WS_BOXES', DIR_WS_INCLUDES . 'boxes/');
define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');
define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');
define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');
define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');
define('DIR_FS_CATALOG', '/home/xx/public_html/kite/');
define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');
define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

Everything else is working fine, and if I click "yes" on the security alert, the payment gets registered and the order as well.

When i did "view source" on checkout_confirmation.php (the step where the customer confirms the order) i can see this kind of URL:

<input type="hidden" name="osc_ok_url" value="http://www.xx.se/kite/checkout_process.php?osCsid=252a18291cb9aca0a8d99c 6820b24720"><input type="hidden" name="osc_error_url" value="http://www.xx.se/kite/checkout_payment.php?payment_error=pr_cc_ssl&s tatus=fel&osCsid=252a18291cb9aca0a8d99c6820b24 720">

is this the problem? what can i do about it?

please help!

///eddman