I hear ya Tony and yes, they are that savvy a client. If I can't find a solution, I'll see if I can convince them.
Rey... Tony wrote: > rey. > > this is a perfect spot for client intervention. > there is nothing wrong with your cflocation doing a fully > qualified url that is ssl enabled (https://www.) rather than (http://) > since it doesnt hurt, in any way shape or form, it shouldnt even > be a choice that they have to make. i cannot see ANY way to prevent > that, unless maybe you set the settings on IE back to allow ANY traffic > in any way, and that would be dumb and unsecure... this is just dumb. > sorry dude. are they this savvy of a client that they pay attention to > whether or not your cflocation tags go to https urls vs. http urls? > > tw > > On 8/30/05, Bobby Hartsfield <[EMAIL PROTECTED]> wrote: > >>Hmm. Did you check the page that is actually doing the redirecting to ensure >>that everything on it (image wise) is actually https:// >> >>SSL can be tricky sometimes >> >>Take this page for example... >>https://www.jimmyv.org/donate/donations/ >> >>the logo on the top left points back to the (non-secure) home page with no >>problems or prompts (for me anyway. Please tell me that's the case when you >>click it!). >> >>Point being, that as long as the referring page is on the same domain and >>completely secure, you shouldn't get that prompt. (same domain includes the >>alias) >> >>One thing to definitely check is your domain name in the URL's. If your >>secure page has "www" make sure the link to the home page does as well. >> >>They need to match your certificate. >> >>Again, this page for example... >>https://www.jimmyv.org/donate/donations/ is fine. No prompts >>https://jimmyv.org/donate/donations/ this one does prompt about security. >> >>Hope any of that helps. >> >> >>-----Original Message----- >>From: Rey Bango [mailto:[EMAIL PROTECTED] >>Sent: Tuesday, August 30, 2005 6:45 PM >>To: CF-Talk >>Subject: Re: Odd SSL problem >> >>Hi Bobby! Thanks for the reply. Its a client requirement that it not be >>secure as they don't believe that there's any reason for an SSL session >>to be established on the homepage. >> >>This is a stumper! >> >>Rey... >> >>Bobby Hartsfield wrote: >> >>>Is there any special reason that the home page can't be secure for logged >> >>in >> >>>users? >>> >>>-----Original Message----- >>>From: Rey Bango [mailto:[EMAIL PROTECTED] >>>Sent: Tuesday, August 30, 2005 4:20 PM >>>To: CF-Talk >>>Subject: Odd SSL problem >>> >>>Hi guys. I'm having an odd SSL quirk that I can't seem to get around. >>> >>>When someone logs in via a secure page, they submit they're login, it >>>posts back to the same page, validates the login credentials and then >>>redirects them to the homepage. The problem that I'm encountering is >>>upon the redirect to the homepage. Since the homepage is not a secure >>>page, IE popups a dialog saying: >>> >>>"You are about to be redirected to a connection that is not secure. The >>>information you are sending to the current site might be retransmitted >>>to a nonsecure site. Do you wish to continue?" >>> >>>If I hit yes, it goes to the homepage just fine. >>> >>>I'm currently using CFLOCATION to do the redirect. Any ideas on how I >>>can avoid the popup and get them to the homepage? >>> >>>Rey... >>> >> >>-- >>http://www.ReyBango.com >> >> >> >> >> > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Discover CFTicket - The leading ColdFusion Help Desk and Trouble Ticket application http://www.houseoffusion.com/banners/view.cfm?bannerid=48 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:216929 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
