Thanks for your quick response Dave, but I think I've finally discovered the
problem and it may be a bug in IE 5. Basically, in trying to pass a WDDX
packet via SSL, IE 5 interprets the packet as another form and sends two
form headers to the processor page. If you refresh the processor page, the
form variables reappear and IE discards the other form. This only happens
when passing via SSL and IE 5.0 - regular HTTP posts don't display this same
behavior. IE 4 and NS 4 are not affected by this bug. The workaround was
to write the WDDX packet to a temp table in the db and then retrieve it from
the SSL side, not what I really wanted to do, but it works.
Thanks for you suggestions,
Ryan
Ryan Hill, MCSE
Director, Systems Integration
Market Matrix, Inc.
http://www.marketmatrix.com
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, May 03, 2000 4:48 PM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: RE: SSL, Formfields, and IE 5
>
>
> > Is anyone out there aware of problems posting forms to an SSL
> > processing page? I've got a form page that accepts input, and
> > passes some hidden variables to an SSL secure processing page
> > which works fine in Netscape (imagine that :) but fails in IE.
> > The formfields aren't being passed in the initial request but
> > if I refresh the processing page, the formfields magically appear.
> >
> > The real kicker - if I make up a plain test form passing arbitrary
> > values and a processor page that simply outputs the formfields
> > and then I place those two files in the exact same directory
> > structure, it works in SSL. The original pages also work if I
> > call the form processor page without SSL...
> >
> > Anyone have any ideas? I've been pulling my hair out on this
> > for 3 days... and it hurts!
>
> I vaguely remember hearing something about this, and there
> may be a patch
> from Microsoft to address this, although a cursory glance at
> their site
> didn't find it. You might also try "padding" your form by adding some
> additional fields, which might be a kludgy workaround for
> data truncation
> problems, or simply give in and put your form behind SSL, too.
>
> Dave Watts, CTO, Fig Leaf Software
> http://www.figleaf.com/
> voice: (202) 797-5496
> fax: (202) 797-5444
>
------------------------------------------------------------------------------
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
