<p align=\"left\"><b><font face=\"Arial\" size=\"2\">GFI MailSecurity's HTML
threat engine found HTML scripts in this email and has disabled
them.</font></b></p>I built a login scheme last year where I ran across the
same problem. I
solved it by using a Javascript redirect. In case the user disabled
Javascript, I used a META tag to send the browser to a different page
that was not secured.
If the META tag did not work, the browser displayed a link for the user
to click. Below is the relevant snippet of my code...
<!--- Send the user to the originally-requested URL.
--->
<!--- This process must be performed using a JavaScript
redirect. --->
<!--- CFLOCATION uses a temporary redirect and will
cause the browser to --->
<!--- throw an error that the user is being redirected
to a non-secure site. --->
<!--- Although the sign in form has been processed
securely, this provides a --->
<!--- warm and fuzzy feel for the end users. --->
<!--- CFOUTPUT is required to send the HTML code to the
browser. --->
<cfoutput>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd";>
<html lang="en-US">
<head>
<title>#Request.Constants.SiteName# »
Signing In To #Request.Constants.SiteName#</title>
<cfinclude
template="/CFInclude/Core/CommonMetaTags.cfm">
<Xcript type="text/javascript"><!--
if (document.images)
location.replace('http://#Request.ThisServer##Request.ThisURL#');
else
location.href =
'http://#Request.ThisServer##Request.ThisURL#';
//--></Xcript>
<!-- The following meta tag is required for
browsers that do not have javascript -->
<!-- enabled. The meta will send the user to
the desired page after sign in. -->
<meta http-equiv=refresh content="10;
url=http://#Request.ThisServer##Request.ThisURL#";>
</head>
<body>
<p>
You have successfully signed in to
#Request.Constants.SiteName#.<br> <br>
Please wait while the requested page is
displayed.<br>
<a
href="http://#Request.ThisServer##Request.ThisURL#";>Click here if
#Request.Constants.SiteName# does not load in approximately ten
seconds.</a><br> <br>
(This message is displayed because you
do not have JavaScript enabled in your browser.)
</p>
</body>
</html>
</cfoutput>
<cfabort>
-----Original Message-----
From: Rey Bango [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 30, 2005 5:45 PM
To: CF-Talk
Subject: Re: Odd SSL problem
Hi Bobby! Thanks for the reply. Its a client requirement that it not be
secure as they don't believe that there's any reason for an SSL session
to be established on the homepage.
This is a stumper!
Rey...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Logware (www.logware.us): a new and convenient web-based time tracking
application. Start tracking and documenting hours spent on a project or with a
client with Logware today. Try it for free with a 15 day trial account.
http://www.houseoffusion.com/banners/view.cfm?bannerid=67
Message: http://www.houseoffusion.com/lists.cfm/link=i:4:216932
Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4
Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
