473,888 Members | 1,392 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

redirect from https to http w/o security warning

I'm sending users to a secure page https to fill out a registration form.
When they're done I show a thank you page. I need to return the user to http
mode after filling out the form.

If I use response.redire ct I get a security warning when transitioning from
https to http. Is there an accepted way to avoid having the user see this?

Thanks.
Apr 27 '06 #1
5 3634
Have you tried using Server.transfer instead? that way the url may remain
the same and you will not have the issue.
--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:B6******** *************** ***********@mic rosoft.com...
I'm sending users to a secure page https to fill out a registration form.
When they're done I show a thank you page. I need to return the user to
http
mode after filling out the form.

If I use response.redire ct I get a security warning when transitioning
from
https to http. Is there an accepted way to avoid having the user see this?

Thanks.

Apr 27 '06 #2

No that will only delay the ineviteable, as they can choose other pages from
the main navigation which don't use transfer or redirect.

"Swanand Mokashi" wrote:
Have you tried using Server.transfer instead? that way the url may remain
the same and you will not have the issue.
--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:B6******** *************** ***********@mic rosoft.com...
I'm sending users to a secure page https to fill out a registration form.
When they're done I show a thank you page. I need to return the user to
http
mode after filling out the form.

If I use response.redire ct I get a security warning when transitioning
from
https to http. Is there an accepted way to avoid having the user see this?

Thanks.


Apr 27 '06 #3
Ok -- I thought you just needed it for this page.

The warning message when you move from https to http is by design on the
browser. You don't want to override that behavior

--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:50******** *************** ***********@mic rosoft.com...

No that will only delay the ineviteable, as they can choose other pages
from
the main navigation which don't use transfer or redirect.

"Swanand Mokashi" wrote:
Have you tried using Server.transfer instead? that way the url may remain
the same and you will not have the issue.
--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:B6******** *************** ***********@mic rosoft.com...
> I'm sending users to a secure page https to fill out a registration
> form.
> When they're done I show a thank you page. I need to return the user to
> http
> mode after filling out the form.
>
> If I use response.redire ct I get a security warning when transitioning
> from
> https to http. Is there an accepted way to avoid having the user see
> this?
>
> Thanks.


Apr 27 '06 #4
I've seen many websites that allow you to go from https to http without the
popup.
"Swanand Mokashi" <sw***********@ swanandmokashi. com> wrote in message
news:eU******** ******@TK2MSFTN GP04.phx.gbl...
Ok -- I thought you just needed it for this page.

The warning message when you move from https to http is by design on the
browser. You don't want to override that behavior

--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:50******** *************** ***********@mic rosoft.com...

No that will only delay the ineviteable, as they can choose other pages
from
the main navigation which don't use transfer or redirect.

"Swanand Mokashi" wrote:
Have you tried using Server.transfer instead? that way the url may
remain
the same and you will not have the issue.
--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:B6******** *************** ***********@mic rosoft.com...
> I'm sending users to a secure page https to fill out a registration
> form.
> When they're done I show a thank you page. I need to return the user
> to
> http
> mode after filling out the form.
>
> If I use response.redire ct I get a security warning when transitioning
> from
> https to http. Is there an accepted way to avoid having the user see
> this?
>
> Thanks.


Apr 27 '06 #5
That's because they don't include both secure and non-secure items in the same page.

The warning is only sent when both secure
and non-secure items are included in the same page.


Juan T. Llibre, asp.net MVP
aspnetfaq.com : http://www.aspnetfaq.com/
asp.net faq : http://asp.net.do/faq/
foros de asp.net, en español : http://asp.net.do/foros/
=============== =============== =====
"Jeff Dillon" <je********@hot mail.com> wrote in message
news:uQ******** ******@TK2MSFTN GP03.phx.gbl...
I've seen many websites that allow you to go from https to http without the popup.
"Swanand Mokashi" <sw***********@ swanandmokashi. com> wrote in message
news:eU******** ******@TK2MSFTN GP04.phx.gbl...
Ok -- I thought you just needed it for this page.

The warning message when you move from https to http is by design on the browser. You don't want
to override that behavior

--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:50******** *************** ***********@mic rosoft.com...

No that will only delay the ineviteable, as they can choose other pages from
the main navigation which don't use transfer or redirect.

"Swanand Mokashi" wrote:

Have you tried using Server.transfer instead? that way the url may remain
the same and you will not have the issue.
--
Swanand Mokashi
Microsoft Certified Solution Developer (.NET) - Early Achiever
Microsoft Certified Application Developer (.NET)

http://www.dotnetgenerics.com/
DotNetGenerics. com -- anything and everything about Microsoft .NET
technology ...

http://www.swanandmokashi.com/
http://www.swanandmokashi.com/HomePage/WebServices/
Home of the Stock Quotes, Quote of the day and Horoscope web services
"Dabbler" <Da*****@discus sions.microsoft .com> wrote in message
news:B6******** *************** ***********@mic rosoft.com...
> I'm sending users to a secure page https to fill out a registration form.
> When they're done I show a thank you page. I need to return the user to
> http
> mode after filling out the form.
>
> If I use response.redire ct I get a security warning when transitioning
> from
> https to http. Is there an accepted way to avoid having the user see this?
>
> Thanks.



Apr 27 '06 #6

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

7
11167
by: deko | last post by:
I have a login page that is supposed to redirect the user to his private page after login. But header("Location: $url") does not work after I set the $_SESSION variable - I get "Warning: Cannot modify header information - headers already sent by ... The abbreviated code on the login page looks like this: <?php session_start(); ?>
2
7816
by: Robert Gordon | last post by:
I now realize I probably should have tried posting this on the IIS board first.. I am running OWA 2003 Server as Front End server to my Exchange 2000 native domain. The FE server is secured by a 128 bit SSL cert. The OWA 2003 server is running on Windows 2003 server in a Windows 2003 native AD domain. At present, the server is configured so that user's have to specifically go to the URL httpS://myserver.company.com in order to access...
5
4036
by: Larry Woods | last post by:
I am losing Session variables, but only those that are set in the page previous to a redirect to a secure page. Anyone seen ANY situation where Session variables just "disappear?" Note that OTHER session variables are still intact !?! TIA, Larry Woods
14
2526
by: Peter Chant | last post by:
I'm currently authenticating a site I have built using basic http authentication built into apache. This has zero overhead on php which is a bonus but it seems to not quite work how I'd like. Are the username and password in the login box that comes up encrypted? When I login https://mysite.local:portnum I get the login dialog. As I am using a self signed certificate I see the dialog stating warning me about it first before the login...
5
6103
by: Hatim Ali | last post by:
Hello folks, I've integrated my ASP.NET website with a portal on web. My website opens in a frame provided by the web portal. The portal uses https protocol. Now when i open my website IE displays a security warning saying "This page contains both secure and un-secure items. Do you want to display the non secure items". When i hit yes every thing works fine. What should i do to remove this security warning. My ASP.NET web page has a...
1
2260
by: E | last post by:
I have a login page that's https and after logging in should redirect to the home page http://www.example.com <form id="Form1" method="post" runat="server"> No matter what I've tried it tries to redirect to https://www.example.com (https) Exact error is:
0
1396
by: Jeyakumar | last post by:
Hi, I am using following code to avoid security warning when switch from pageA(https) to PageB (http). 'Output a redirector for the needed page to avoid a security warning. Response.Clear() 'Add a refresh header to the response for the new path. Response.AddHeader("Refresh", "0;URL=PageB.aspx")
7
13459
by: =?Utf-8?B?YzY3NjIyOA==?= | last post by:
Hi all, I am trying to set this up using asp code and IIS configuration. But it seems not working. Here it is the way I am doing. In IIS I set up a virtual directory with secure communication, I checked require secure channel, require 128-bit encryption. In custom error, instead of using default message HTTP 403.4 - Forbidden: SSL required Internet Information Services in iishelp 403.4htm, I am trying to do redirect automatically. so I...
3
15683
by: Sarah | last post by:
I was wondering if someone might be able to help me with this issue. I have a feeling this has something to do with my host's server settings as I used to be able to get CURL to follow redirects by setting CURLOPT_FOLLOWLOCATION set to true. I had a problem with my host's updating something in the past that gave me the error "CURLOPT_FOLLOWLOCATION cannot be activated when in safe_mode or an open_basedir is set". My host worked on the...
0
11185
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
0
10778
jinu1996
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth. The Art of Business Website Design Your website is...
1
10887
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
0
10439
tracyyun
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
1
7990
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
0
5824
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
0
6014
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
2
4247
muto222
by: muto222 | last post by:
How can i add a mobile payment intergratation into php mysql website.
3
3252
bsmnconsultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.