• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

ssl and non-secure items

 
Ranch Hand
Posts: 71
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi experts,

I have a web application configured to be secured by ssl, the problem is at some pages the browser displays a dialog box as a warning that says, this page contains both secure and non-secure items do you want to display non-secure items? and the user has two options yes and no.

actually, this page is a table like a grid contains information, and it is paged so user can navigate between pages and for each page this message is displaying.

my questions are,
1- why this message appears?
2- how can I find which items are non-secure?
3- how to prevent this message to be displayed programatically?

thank you very much
 
Rancher
Posts: 43081
77
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator


1- why this message appears?


Some elements of the page (maybe images, CSS or JavaScript files) are being addressed with an HTTP address instead of an HTTPS address.


2- how can I find which items are non-secure?


In Firefox, go to Tools -> Page Info. The "Links" and "Media" tabs contain information about embedded elements.


3- how to prevent this message to be displayed programatically?


You can't.
[ August 28, 2007: Message edited by: Ulf Dittmer ]
 
Sheriff
Posts: 13411
Firefox Browser VI Editor Redhat
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
To expand on Ulf's answer.

These messages are an important safety feature of the browser.
Once you are in a secure (SSL) environment, it is important that all requests from the browser to the server are made under SSL. Otherwise a malicious or poorly written site could transmit private information over a non-secure connection while the browser is telling the user that everything is secure.
 
You guys haven't done this much, have ya? I suggest you study this tiny ad:
a bit of art, as a gift, the permaculture playing cards
https://gardener-gift.com
reply
    Bookmark Topic Watch Topic
  • New Topic