But you said the cert works fine in firefox when you go the https://www.beeculture.com, right? That's why I think Firefox is trying to recognize the server side redirect and thinks it might be a hacking attempt. Microsoft probably would never be so thoughtful to put that into IE. ;-)
On the other hand, if that is the case, then it's a headache for you and you may have to put some firefox specific code into place (i.e. the client-side redirect, only if it's firefox). Dump the CGI scope, I think you'll find everything you need there to accomplish what you need... Dave -----Original Message----- From: Chad Gray [mailto:cg...@careyweb.com] Sent: Friday, October 02, 2009 2:35 PM To: cf-talk Subject: RE: ssl OH.. hang on it only errors in firefox. I tried IE and the certificate and my original code work fine (after I remove the www.) CGI.ServerName does include www. (DUH!). Now I just have to figure out why the SSL cert does not work in FireFox. > -----Original Message----- > From: Chad Gray [mailto:cg...@careyweb.com] > Sent: Friday, October 02, 2009 3:30 PM > To: cf-talk > Subject: RE: ssl > > > I tried this code and it takes me to http://www.www.beeculture.com/ > > www. Should not be part of CGI.ServerName right? > > > > > -----Original Message----- > > From: Dave Phillips [mailto:experiencedcfdevelo...@gmail.com] > > Sent: Friday, October 02, 2009 3:16 PM > > To: cf-talk > > Subject: RE: ssl > > > > > > How about a client side redirect? > > > > <cfif CGI.HTTPS eq "on"> > > <cfif Len(CGI.QUERY_STRING)> > > <script>window.location = > > > '<cfoutput>http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#?#CGI.QUERY_STRING#< > > /c > > foutput>';</script> > > <cfabort> > > <cfelse> > > <script>window.location = > > > '<cfoutput>http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#</cfoutput>';</scrip > > t> > > <cfabort> > > </cfif> > > </cfif> > > > > Maybe Firefox is trying to protect a user from hitting an SSL page that > > has > > been hijacked somehow.... > > > > Dave > > -----Original Message----- > > From: Chad Gray [mailto:cg...@careyweb.com] > > Sent: Friday, October 02, 2009 2:06 PM > > To: cf-talk > > Subject: RE: ssl > > > > > > I remove the code and hit the web site with ssl and it works fine. I > know > > the certificate is good. > > > > https://www.beeculture.com/ > > > > This one has me stumped. > > > > > > > -----Original Message----- > > > From: Dave Phillips [mailto:experiencedcfdevelo...@gmail.com] > > > Sent: Friday, October 02, 2009 2:58 PM > > > To: cf-talk > > > Subject: RE: ssl > > > > > > > > > My guess is you don't have a valid security certificate on the server. > > If > > > you have any cert installed, Firefox is first going to get that cert > > info > > > from the web server before your request ever gets to ColdFusion. What > > you > > > probably need to do is turn off the SSL on that site if you don't want > > > people going to it. > > > > > > If you want to accomplish the redirect below without a warning, you'll > > > have > > > to install a valid certificate. > > > > > > Dave > > > > > > -----Original Message----- > > > From: Chad Gray [mailto:cg...@careyweb.com] > > > Sent: Friday, October 02, 2009 1:43 PM > > > To: cf-talk > > > Subject: ssl > > > > > > > > > I have some code in application.cfm that is supposed to re-direct the > > user > > > to a non-ssl version of the page. > > > > > > <!--- redirect to non-SSL ---> > > > <cfif CGI.HTTPS eq "on"> > > > <cfif Len(CGI.QUERY_STRING)> > > > <cflocation > > > url="http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#?#CGI.QUERY_STRING#"; > > > addtoken="no"> > > > <cfelse> > > > <cflocation > > > url="http://www.#CGI.SERVER_NAME##CGI.PATH_INFO#"; addtoken="no"> > > > </cfif> > > > </cfif> > > > > > > > > > I get this error in Firefox when I try to use it: > > > > > > Secure Connection Failed > > > invalid security certificate. > > > The certificate is not trusted because the issuer certificate is > > unknown. > > > > > > (Error code: sec_error_unknown_issuer) > > > > > > * This could be a problem with the server's configuration, or it > > could > > > be > > > someone trying to impersonate the server. > > > > > > * If you have connected to this server successfully in the past, > the > > > error may be temporary, and you can try again later. > > > > > > > > > Any ideas why this would happen? > > > Thanks! > > > Chad > > > > > > > > > > > > > > > > > > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Want to reach the ColdFusion community with something they want? Let them know on the House of Fusion mailing lists Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:326859 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
