Witango-Talk: https
Hi, We have Witango 5.5 running on Windows 2003 with https for the site. Witango is pulling in images for display from a Window Storage Server 2003. In IE, the non-secure items dialog box is appearing even though the images' directory is set up as a virtual directory on the Witango server. Witango is translating the virtual directory address to the nonsecure http address. What is the best way to set up the servers so you can pull the images and not get the warning? Putting a https certificate on the Storage Server is not an option. Ted Wolfley Lead Internet and Database Programmer The Ogden Group of Rochester phone: (585) 321 1060 x23 fax: (585) 321 0043 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] www.ogdengroup.com http://www.ogdengroup.com TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: https
Never mind, figured it out. Simple typing error. I guess I should have walked away from it earlier. Thanks. Ted From: Ted Wolfley [mailto:[EMAIL PROTECTED] Sent: Thursday, November 01, 2007 11:55 AM To: witango-talk@witango.com Subject: Witango-Talk: https Hi, We have Witango 5.5 running on Windows 2003 with https for the site. Witango is pulling in images for display from a Window Storage Server 2003. In IE, the non-secure items dialog box is appearing even though the images' directory is set up as a virtual directory on the Witango server. Witango is translating the virtual directory address to the nonsecure http address. What is the best way to set up the servers so you can pull the images and not get the warning? Putting a https certificate on the Storage Server is not an option. Ted Wolfley Lead Internet and Database Programmer The Ogden Group of Rochester phone: (585) 321 1060 x23 fax: (585) 321 0043 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] www.ogdengroup.com http://www.ogdengroup.com TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: https
Ted, I give my image tags a relative path instead of an absolute path. IE: I do not put http://www.xxx.com http://www.xxx.com/ or https://www.xxx.com https://www.xxx.com/ in front of the location of the image. img border=0 src=/Sites/xxx/Theme/recommend.gif width=110 height=40 alt= / This seems to work fine for me. Hope this helps. Steve Fogelson Internet Commerce Solutions _ From: Ted Wolfley [mailto:[EMAIL PROTECTED] Sent: Thursday, November 01, 2007 10:55 AM To: witango-talk@witango.com Subject: Witango-Talk: https Hi, We have Witango 5.5 running on Windows 2003 with https for the site. Witango is pulling in images for display from a Window Storage Server 2003. In IE, the non-secure items dialog box is appearing even though the images' directory is set up as a virtual directory on the Witango server. Witango is translating the virtual directory address to the nonsecure http address. What is the best way to set up the servers so you can pull the images and not get the warning? Putting a https certificate on the Storage Server is not an option. Ted Wolfley Lead Internet and Database Programmer The Ogden Group of Rochester phone: (585) 321 1060 x23 fax: (585) 321 0043 mailto:[EMAIL PROTECTED] [EMAIL PROTECTED] http://www.ogdengroup.com www.ogdengroup.com TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Witango-Talk: HTTPS forcing
What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Re: Witango-Talk: HTTPS forcing
1. you can set your http server to redirect the http to https Depending on your server, you might accomplish the whole thing if you have a good redirect command system. 2. For key links on your site, instead of relative or root relative links, make them https://@domain/ and then the URL On Aug 21, 2006, at 11:09 AM, Dan Stein wrote: What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector __ __ TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Re: Witango-Talk: HTTPS forcing
Caveat: I use Webstar, so your tool will differ: Set up the host to accept only port 443 set up another host that goes to another site that bounces you to the home page of your site, but on port 443. Route port 80 hits go to the second host. On Aug 21, 2006, at 11:09 AM, Dan Stein wrote: What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector __ __ TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: HTTPS forcing
Dan, Could you use a variation of @IFEQUAL VALUE1=@CGIPARAM server_port VALUE2=80 to redirect only your Tango apps? Mike -Original Message- From: Dan Stein [mailto:[EMAIL PROTECTED] Sent: Monday, August 21, 2006 2:09 PM To: witango-talk@witango.com Subject: Witango-Talk: HTTPS forcing What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Re: Witango-Talk: HTTPS forcing
apache mod_rewrite On Aug 21, 2006, at 11:49 AM, Roland Dumas wrote: Caveat: I use Webstar, so your tool will differ: Set up the host to accept only port 443 set up another host that goes to another site that bounces you to the home page of your site, but on port 443. Route port 80 hits go to the second host. On Aug 21, 2006, at 11:09 AM, Dan Stein wrote: What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector _ ___ TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf __ __ TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: HTTPS forcing
Dan, I have used a different approach. I load a class file at the beginning of each taf or tml which performs checks and maintenance among other things. I pass 2 parameters to a method in the class file which indicate the admin level required to run the taf and also whether ssl (https) is required. If one or the other parameter is not met, it displays an explanation and redirects to the main page of the site. Steve Fogelson Internet Commerce Solutions -Original Message- From: Dan Stein [mailto:[EMAIL PROTECTED] Sent: Monday, August 21, 2006 1:09 PM To: witango-talk@witango.com Subject: Witango-Talk: HTTPS forcing What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: HTTPS forcing
I use this block of code at the top of my TAF: !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 3.2//EN HTML HEAD TITLESECURE LOGON/TITLE /HEAD @comment test to see if secure already in tango by using IF @cgiparam server_port != 80 (IT WILL BE 80 OR 443) 80=HTTP 443=HTTPS meta http-equiv=Refresh content=1; URL=https://@cgiparam server_name@CGI@appfile?_FUNCTION=@ARG name=_FUNCTION?@userreferenceargument /@comment BODY meta http-equiv=Refresh content=1; URL=https://www.eapintl.com@appfile?_FUNCTION=@ARG name=_FUNCTION@userreferenceargument /BODY /HTML -Original Message- From: Dan Stein [mailto:[EMAIL PROTECTED] Sent: Monday, August 21, 2006 12:09 PM To: witango-talk@witango.com Subject: Witango-Talk: HTTPS forcing What the best way. Compatible with all browsers. To force a WiTango site to https. We want to run the whole site in https and catch anyone who has an old link or bookmark to https instead of http -- Dan Stein FileMaker 7 Certified Developer Digital Software Solutions 799 Evergreen Circle Telford PA 18969 Land: 215-799-0192 Cell: 610-256-2843 Fax 413-410-9682 FMP, WiTango, EDI,SQL 2000, MySQL, CWP [EMAIL PROTECTED] www.dss-db.com Men do not care how nobly they live, but only how long they live, although it is within the reach of every man to live nobly, but within no man's power to live long. Brian Haig Private Sector TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Witango-Talk: https @URL with locally created certificate
Title: https @URL with locally created certificate I've been using @url to query a property management system within our organization using Witango 5 Server running on Windows 2000 Standard Server. Recently the property system was converted to SSL, running a corporate certificate that isn't traceable to a public root. Using a browser to access the new site, I receive a dialog box that requires that I confirm the certificate is OK to use. I can also add the certificate to the list of those I'll always accept, but that only affects whatever browser I'm using. Witango, understandably, doesn't recognize the cert either, but I know of no way informing it that the cert is good. I receive an error message of unable to send data: An SSL connection could not be established. How do I get Witango Server to accept a homemade cert? tia, chas TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Re: Witango-Talk: https @URL with locally created certificate
I could be wrong, but I don't think the validity of the cert would hinder witango. Someone else may need to answer that. -- Robert Garcia President - BigHead Technology VP Application Development - eventpix.com 13653 West Park Dr Magalia, Ca 95954 ph: 530.645.4040 x222 fax: 530.645.4040 [EMAIL PROTECTED] - [EMAIL PROTECTED] http://bighead.net/ - http://eventpix.com/ On Aug 5, 2005, at 1:54 PM, Ferguson, Charles W wrote: I've been using @url to query a property management system within our organization using Witango 5 Server running on Windows 2000 Standard Server.Recently the property system was converted to SSL, running a corporate certificate that isn't traceable to a public root.Using a browser to access the new site, I receive a dialog box that requires that I confirm the certificate is OK to use. I can also add the certificate to the list of those I'll always accept, but that only affects whatever browser I'm using.Witango, understandably, doesn't recognize the cert either, but I know of no way informing it that the cert is good. I receive an error message of "unable to send data: An SSL connection could not be established."How do I get Witango Server to accept a homemade cert? tia, chas TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: https @URL with locally created certificate
Title: https @URL with locally created certificate Andrei, please email [EMAIL PROTECTED] with instructions on how to do what he is asking. Thx. p. From: Ferguson, Charles W [mailto:[EMAIL PROTECTED] Sent: Friday, August 05, 2005 3:54 PM To: witango-talk@witango.com Subject: Witango-Talk: https @URL with locally created certificate I've been using @url to query a property management system within our organization using Witango 5 Server running on Windows 2000 Standard Server. Recently the property system was converted to SSL, running a corporate certificate that isn't traceable to a public root. Using a browser to access the new site, I receive a dialog box that requires that I confirm the certificate is OK to use. I can also add the certificate to the list of those I'll always accept, but that only affects whatever browser I'm using. Witango, understandably, doesn't recognize the cert either, but I know of no way informing it that the cert is good. I receive an error message of unable to send data: An SSL connection could not be established. How do I get Witango Server to accept a homemade cert? tia, chas TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
Witango-Talk: https request
Vicky Bagwalla t-416-777-2732 - Ext. 44 - http://www.u214.net Hello, I am trying to make an https request to a DLL on a server (https:///file.dll) and expecting back some parameters. Is there any specific action I can use or would I simply do it through a Result action? Thanks Vicky Information contained herein is the sole and exclusive property of AReA Communications. The information within this document or item is confidential; it shall not be disclosed to a third party or used except for the purpose of the recipient providing a service to AReA Communications or for the benefit of AReA Communications. Your retention, possession or use of this information constitutes your acceptance of these terms. Please note that the sender accepts no responsibility for viruses and it is your responsibility to scan attachments (if any). TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: https request
If I understand you correctly, you would just need the result action. The only real difference between https and http is that the data is sent encrypted. Ben Johansen - http://www.pcforge.com Authorized Witango MDaemon Reseller Available for Witango Developement From: Witango [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 12, 2004 6:14 AM To: [EMAIL PROTECTED] Subject: Witango-Talk: https request Vicky Bagwalla t-416-777-2732 - Ext. 44 - http://www.u214.net Hello, I am trying to make an https request to a DLL on a server (https:///file.dll) and expecting back some parameters. Is there any specific action I can use or would I simply do it through a Result action? Thanks Vicky Information contained herein is the sole and exclusive property of AReA Communications. The information within this document or item is confidential; it shall not be disclosed to a third party or used except for the purpose of the recipient providing a service to AReA Communications or for the benefit of AReA Communications. Your retention, possession or use of this information constitutes your acceptance of these terms. Please note that the sender accepts no responsibility for viruses and it is your responsibility to scan attachments (if any). TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf TO UNSUBSCRIBE: Go to http://www.witango.com/developer/maillist.taf
RE: Witango-Talk: HTTPS Filter
The other way might be to force all the pages from which you are comming to
the central folder to https.
you can try calling an image on image onload and check if it is going to
https.if it is not going to https then you can force it to go to the error
page.
here in the example below
it tries to call the image call1.gif.if it is sucessfully able to call the
image in https then it calls the function actpage();
else
it calls msgpage and redirects it to access denied page.
You can actually have a branch action calling this particular taf file
html
head
script Language=JavaScript
!--
function actpage()
{
top.location.href =
https://xxx.xxx.xxx.xx/welcometocentralfileserver.taf?userReference=@USERR
EFERENCE;
}
function msgpage()
{
top.location.href =
http://xxx.xxx.xxx.xx/accessdenied.taf?userReference=@USERREFERENCE;
}
/script
titleTesting Browser for 128bit cipher strength/title
/head
body bgcolor=#FF
pimg src=https://xxx.xxx.xxx.xx/gif/call1.gif; WIDTH=1 HEIGHT=1
onLoad=actpage(); onError=msgpage();br/p
/body
/html
hope this helps!
cheers
Prasad
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Jess Parker
Sent: Monday, July 29, 2002 11:05 PM
To: Multiple recipients of list witango-talk
Subject: Re: Witango-Talk: HTTPS Filter
It's not very secure, but you could check @CGIPARAM SERVER_PORT to see
if it's 443.
It's probably safer to configure your webserver not to serve files out of
the directory. You can probably set up your webserver to redirect HTTP
requests to HTTPS for specific directories.
On Mon, 29 Jul 2002, Lawrence Reeve wrote:
Hello,
Is there a way to use Tango to check that a url is coming through
https? I don't want anyone accessing some files in a common directory
unless the connection is SSL.
MacOS9, WebStar 4.4, Tango 2000 SP1
--
Lawrence Reeve
[EMAIL PROTECTED]
650 604 4529
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
Witango-Talk: HTTPS Filter
Hello, Is there a way to use Tango to check that a url is coming through https? I don't want anyone accessing some files in a common directory unless the connection is SSL. MacOS9, WebStar 4.4, Tango 2000 SP1 -- Lawrence Reeve [EMAIL PROTECTED] 650 604 4529 TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body
