How about a client side redirect?
<cfif CGI.HTTPS eq "on">
<cfif Len(CGI.QUERY_STRING)>
<script>window.location =
'<cfoutput>http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#?#CGI.QUERY_STRING#</c
foutput>';</script>
<cfabort>
<cfelse>
<script>window.location =
'<cfoutput>http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#</cfoutput>';</script>
<cfabort>
</cfif>
</cfif>
Maybe Firefox is trying to protect a user from hitting an SSL page that has
been hijacked somehow....
Dave
-----Original Message-----
From: Chad Gray [mailto:[email protected]]
Sent: Friday, October 02, 2009 2:06 PM
To: cf-talk
Subject: RE: ssl
I remove the code and hit the web site with ssl and it works fine. I know
the certificate is good.
https://www.beeculture.com/
This one has me stumped.
> -----Original Message-----
> From: Dave Phillips [mailto:[email protected]]
> Sent: Friday, October 02, 2009 2:58 PM
> To: cf-talk
> Subject: RE: ssl
>
>
> My guess is you don't have a valid security certificate on the server. If
> you have any cert installed, Firefox is first going to get that cert info
> from the web server before your request ever gets to ColdFusion. What you
> probably need to do is turn off the SSL on that site if you don't want
> people going to it.
>
> If you want to accomplish the redirect below without a warning, you'll
> have
> to install a valid certificate.
>
> Dave
>
> -----Original Message-----
> From: Chad Gray [mailto:[email protected]]
> Sent: Friday, October 02, 2009 1:43 PM
> To: cf-talk
> Subject: ssl
>
>
> I have some code in application.cfm that is supposed to re-direct the user
> to a non-ssl version of the page.
>
> <!--- redirect to non-SSL --->
> <cfif CGI.HTTPS eq "on">
> <cfif Len(CGI.QUERY_STRING)>
> <cflocation
> url="http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#?#CGI.QUERY_STRING#";
> addtoken="no">
> <cfelse>
> <cflocation
> url="http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#"; addtoken="no">
> </cfif>
> </cfif>
>
>
> I get this error in Firefox when I try to use it:
>
> Secure Connection Failed
> invalid security certificate.
> The certificate is not trusted because the issuer certificate is unknown.
>
> (Error code: sec_error_unknown_issuer)
>
> * This could be a problem with the server's configuration, or it could
> be
> someone trying to impersonate the server.
>
> * If you have connected to this server successfully in the past, the
> error may be temporary, and you can try again later.
>
>
> Any ideas why this would happen?
> Thanks!
> Chad
>
>
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Want to reach the ColdFusion community with something they want? Let them know
on the House of Fusion mailing lists
Archive:
http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:326851
Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
