ActiveTuning Posted July 27, 2004 Posted July 27, 2004 I have SSL enabled, but when checking out, each page has the popup that asks if I want display the nonsecure items ("This page contains both secure and nonsecure items"). I thought it was only supposed to pop this up on the first page and that's it... Is there a way I can fix this?
Guest Posted July 27, 2004 Posted July 27, 2004 You must have "http" hardcoded in your files. As this is dispalying for all the pages, it may be in includes/header.php"
babel Posted July 27, 2004 Posted July 27, 2004 if it's got an ssl cert then you should enter your site as https:// for a secure site instead of http:// SSL / HTTPS is an alternative way to deliver web data between browser and web server. Instead of delivering the data in plain text like HTTP, the HTTP messages and web data are protected by session key encryption. Each SSL negotiation will include authentication, encryption method and key exchange before the actual delivery of protected data can begin excerpt from http://seeingnetsecurity.com/Welcome_to_SNS.HTM#Step_SSL Just another newbie... :)
ActiveTuning Posted July 27, 2004 Author Posted July 27, 2004 After a little research on here I realized that was the problem...It's actually files I'm calling up in my header. Is there a way to make it call up these specific images in the header in https only when somebody is checking out and they should be secure?
Guest Posted July 27, 2004 Posted July 27, 2004 You can check the value for server port to display images only for https. Normally https is configured at port 443, so it will be: if ($HTTP_SERVER_VARS['SERVER_PORT'] == '443') } ...... }
ActiveTuning Posted July 27, 2004 Author Posted July 27, 2004 You can check the value for server port to display images only for https. Normally https is configured at port 443, so it will be: if ($HTTP_SERVER_VARS['SERVER_PORT'] == '443') } ...... } Can you write the full code by any chance? Say I'm trying to get this image. In HTTP it's: http://www.store.com/images/test.jpg When it's secure, it's: https://www.store.com/images/test.jpg So what would be the code I need to put into the header on osC to allow it to do that? Or should I always call it up securely?
Guest Posted July 28, 2004 Posted July 28, 2004 If you have image on the same site, Why don't you use relative path instead of full path? There will be no question of http/https in case of relative path.
ActiveTuning Posted July 28, 2004 Author Posted July 28, 2004 If you have image on the same site, Why don't you use relative path instead of full path? There will be no question of http/https in case of relative path. Thanks, I didn't realize that would automaticallly create the secure paths ;) Worked perfect, thanks :)
Goanna Posted July 31, 2004 Posted July 31, 2004 I am having the same problem, and I went through all my files, making sure all the links were relative, or using oscommerce code, like <?php DIR_WS_IMAGES; ?>, but I am still getting an error. I clicked not to display the unsecure items, and it didnt display my banners that were in rotation, so I went and changed all the banner links to relative paths. Now they display when I click the same button, but I still get the warning. I cant figure out what else could be nonsecure. Now when I tell it not to display the nonsecure items, it seems like all the images are loading, so I dont know what it could be. Any ideas?
Goanna Posted July 31, 2004 Posted July 31, 2004 Ahh, I found it. I have flash on the site, and while I remembered to make the links to the swf files relative, I did not notice an external link for a codebase linking to macromedia. I got rid of the codebase link, and that took care of the message :D.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.