rey. this is a perfect spot for client intervention. there is nothing wrong with your cflocation doing a fully qualified url that is ssl enabled (https://www.) rather than (http://) since it doesnt hurt, in any way shape or form, it shouldnt even be a choice that they have to make. i cannot see ANY way to prevent that, unless maybe you set the settings on IE back to allow ANY traffic in any way, and that would be dumb and unsecure... this is just dumb. sorry dude. are they this savvy of a client that they pay attention to whether or not your cflocation tags go to https urls vs. http urls?
tw On 8/30/05, Bobby Hartsfield <[EMAIL PROTECTED]> wrote: > Hmm. Did you check the page that is actually doing the redirecting to ensure > that everything on it (image wise) is actually https:// > > SSL can be tricky sometimes > > Take this page for example... > https://www.jimmyv.org/donate/donations/ > > the logo on the top left points back to the (non-secure) home page with no > problems or prompts (for me anyway. Please tell me that's the case when you > click it!). > > Point being, that as long as the referring page is on the same domain and > completely secure, you shouldn't get that prompt. (same domain includes the > alias) > > One thing to definitely check is your domain name in the URL's. If your > secure page has "www" make sure the link to the home page does as well. > > They need to match your certificate. > > Again, this page for example... > https://www.jimmyv.org/donate/donations/ is fine. No prompts > https://jimmyv.org/donate/donations/ this one does prompt about security. > > Hope any of that helps. > > > -----Original Message----- > From: Rey Bango [mailto:[EMAIL PROTECTED] > Sent: Tuesday, August 30, 2005 6:45 PM > To: CF-Talk > Subject: Re: Odd SSL problem > > Hi Bobby! Thanks for the reply. Its a client requirement that it not be > secure as they don't believe that there's any reason for an SSL session > to be established on the homepage. > > This is a stumper! > > Rey... > > Bobby Hartsfield wrote: > > Is there any special reason that the home page can't be secure for logged > in > > users? > > > > -----Original Message----- > > From: Rey Bango [mailto:[EMAIL PROTECTED] > > Sent: Tuesday, August 30, 2005 4:20 PM > > To: CF-Talk > > Subject: Odd SSL problem > > > > Hi guys. I'm having an odd SSL quirk that I can't seem to get around. > > > > When someone logs in via a secure page, they submit they're login, it > > posts back to the same page, validates the login credentials and then > > redirects them to the homepage. The problem that I'm encountering is > > upon the redirect to the homepage. Since the homepage is not a secure > > page, IE popups a dialog saying: > > > > "You are about to be redirected to a connection that is not secure. The > > information you are sending to the current site might be retransmitted > > to a nonsecure site. Do you wish to continue?" > > > > If I hit yes, it goes to the homepage just fine. > > > > I'm currently using CFLOCATION to do the redirect. Any ideas on how I > > can avoid the popup and get them to the homepage? > > > > Rey... > > > > -- > http://www.ReyBango.com > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:216921 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
