IE: javascript not secure(?!)
I just turned on encryption for our website, and now the Secure Lock indicator (padlock) in Internet Explorer goes off sometimes. According to Microsoft knowledge base article Q179592 this is a feature not a bug, though it incorrectly indicates a loss of security -- the page is called with javascript, which IE doesn't recognize as being in the secure area of the website. We use javascript location.href and history.go a lot due to frames on our site. It seems there must be a way to tell IE that a javascript-directed address is secure ... any ideas? thanks, Chris Norloff ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Re: IE: javascript not secure(?!)
Just a shot in the dark, but are you re-directing to absolute URL's w/ the https on it? It sure would suck to have to change that from relative redirects, though. Chris Norloff wrote: > > I just turned on encryption for our website, and now the Secure Lock indicator >(padlock) in Internet Explorer goes off sometimes. > > According to Microsoft knowledge base article Q179592 this is a feature not a bug, >though it incorrectly indicates a loss of security -- the page is called with >javascript, which IE doesn't recognize as being in the secure area of the website. > > We use javascript location.href and history.go a lot due to frames on our site. It >seems there must be a way to tell IE that a javascript-directed address is secure ... > > any ideas? > > thanks, > Chris Norloff > > ~~ > Structure your ColdFusion code with Fusebox. Get the official book at >http://www.fusionauthority.com/bkinfo.cfm > > Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ > Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists -- Jeff Houser mailto:[EMAIL PROTECTED] AIM: Reboog711 | ICQ: 5246969 | Phone: 860-229-2781 -- Author of Instant Cold Fusion 4.5 ISBN: 0-07-213238-8 Due out 3rd Quarter 2001 -- DotComIt, LLC Computer Consultant specializing in database driven web data ColdFusion, Lotus Notes/Domino -- Half of the Alternative Folk Acoustic Duo called Far Cry Fly http://www.farcryfly.com http://www.mp3.com/FarCryFly -- Does Everyone Think I'm a Cynical? ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Re: IE: javascript not secure(?!)
No, everything is done with relative URL's (of course! :-) The problem appears to be specific to IE (versions 4, 5 & 5.5) and using javascript to get secure pages. Beings how this is an acknowledged IR feature/bug, I'm trying to figure out how to do things without a complete redesign (removing frames so we don't need javascript to call specific pages in the frames). thanks, Chris Norloff -- Original Message -- From: Jeffry Houser <[EMAIL PROTECTED]> Date: Sat, 18 Nov 2000 14:47:26 -0500 > > Just a shot in the dark, but are you re-directing to absolute >URL's w/ the https on it? > > It sure would suck to have to change that from relative redirects, >though. > >Chris Norloff wrote: >> >> I just turned on encryption for our website, and now the Secure Lock indicator >(padlock) in Internet Explorer goes off sometimes. >> >> According to Microsoft knowledge base article Q179592 this is a feature not a bug, >though it incorrectly indicates a loss of security -- the page is called with >javascript, which IE doesn't recognize as being in the secure area of the website. >> >> We use javascript location.href and history.go a lot due to frames on our site. It >seems there must be a way to tell IE that a javascript-directed address is secure ... >> >> any ideas? >> >> thanks, >> Chris Norloff >> >> ~~ >> Structure your ColdFusion code with Fusebox. Get the official book at >http://www.fusionauthority.com/bkinfo.cfm >> >> Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ >> Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists > >-- >Jeff Houser >mailto:[EMAIL PROTECTED] >AIM: Reboog711 | ICQ: 5246969 | Phone: 860-229-2781 >-- >Author of Instant Cold Fusion 4.5 >ISBN: 0-07-213238-8 >Due out 3rd Quarter 2001 >-- >DotComIt, LLC >Computer Consultant specializing in database driven web data >ColdFusion, Lotus Notes/Domino >-- >Half of the Alternative Folk Acoustic Duo called Far Cry Fly >http://www.farcryfly.com >http://www.mp3.com/FarCryFly >-- >Does Everyone Think I'm a Cynical? > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
