Browser shows error after Secpay authorisation

[kathanon]

Hi I have searched high and low for an answer to this and spoken to Secpay. I think I know the problem, but not whether there is an easy way to resolve it.

 

When certain (not all, strangely enough) users click on the "authorise" button on the Secpay payment page, a warning is given. In Netscape 7 this is as follows

 

"You have requested an encrypted page that contains some

unencrypted information. Information that you see or enter on this page could easily be read by a third party"

 

I personally do not get error messages when I test with IE and nor do Secpay when they tested with Firefox.

 

However, I think the problem is due to the confirmation page - checkout_success being called from the Secpay server, even though the page is on our own site and the fact that our own site is not https: The url shown for checkout_success.php after a transaction is the https://secpay one.

 

This means that the images on that particular page are not in a secure directory. Secpay have suggested uploading all images for that page to their server and using https://secpay.com/users/username etc etc to reference the images.

 

If possible I would like to find an easier way, as the page is full of include files, images etc and I am not confident in changing all of these, especially on a working shop.

 

Any help would be very much appreciated. I suppose another way would be to use our own secure site and re configure all of oscommerce to use our ssl. This seems a bit drastic.

 

I am not sure how, or which images, files I should amend, or upload to the Secpay site from checkout_success.php.

 

Thanks