Hi there,
while implementing hhtps, is there a way not to show the message "Do you want to view only the webpage content that was delivered securely?" and force the answer to "no" as it will mess up with my css and javascript .
thanks
+1
A:
That is implemented by the browser process, not the transport mechanism. There are plenty of custom implementations that would not show that warning, but most commonly available browsers will as it represents a potential security hole in the SSL process.
Essentially its the browser warning you that it only got part of the content from an SSL connection, and there is no way for you the end user to directly tell which page elements are from the trusted (i.e. SSL connected) host and which are from untrusted hosts.
If you want to avoid this, either consider placing your CSS/javascript in the pages directly, or limit your SSL to only specific pages which do not include those resources.
GrayWizardx
2010-08-20 00:40:27
How do i limit the SSL on resources.. the following is the error:'ASP.NET Ajax client-side framework failed to load'.
2010-08-20 01:17:21
+2
A:
you may need to serve all the page elements, including the css and javascript from the SSL server.
Also see http://stackoverflow.com/questions/3011222/dealing-with-http-content-in-https-pages
kervin
2010-08-20 01:05:16