Hey all,
I have been racking my brain all morning to find a solution to this,
and I am having no luck. Our webpage is created with Visual Studio C#
and ASP.Net, hosted in-house using HTTPS with SSL. We got it up and
running great in Dev but once we put it up on the secure server (HTTPS)
we started getting Security Alert messages saying "This page contains
both secure and nonsecure items." - It displays several of these on
every page of the site. Regardless of whether I select yes or no, the
page displays identically. I realise that if you change the settings in
IE for "display mixed content" to 'enable' that fixes the problem.
However, telling our customers to alter thier security settings for our
site is unacceptable.
I am looking for a server-side solution to this problem. What in our
webpage is causing this error?? All images are being displayed with
relevant anchors.
Thanks,
Todd
8  2304 
You need to place your images in a secure directory, too.
Your files are being served from https://yoursite
While your images are being served from http://yoursite/images
Notice the protocol difference.
Secure your images directory, and the problem should disappear.
Juan T. Llibre, ASP.NET MVP
ASP.NET FAQ : http://asp.net.do/faq/
ASPNETFAQ.COM : http://www.aspnetfaq.com/
Foros de ASP.NET en Español : http://asp.net.do/foros/
======================================
<to********@gmail.com> wrote in message
news:11**********************@g47g2000cwa.googlegr oups.com... Hey all,
I have been racking my brain all morning to find a solution to this,
and I am having no luck. Our webpage is created with Visual Studio C#
and ASP.Net, hosted in-house using HTTPS with SSL. We got it up and
running great in Dev but once we put it up on the secure server (HTTPS)
we started getting Security Alert messages saying "This page contains
both secure and nonsecure items." - It displays several of these on
every page of the site. Regardless of whether I select yes or no, the
page displays identically. I realise that if you change the settings in
IE for "display mixed content" to 'enable' that fixes the problem.
However, telling our customers to alter thier security settings for our
site is unacceptable.
I am looking for a server-side solution to this problem. What in our
webpage is causing this error?? All images are being displayed with
relevant anchors.
Thanks,
Todd
Juan,
The base directory for both the files and the images is secured, and if
you click on each of the images being displayed on the page to view
properties, they each have a https://mysite link.
The only thing I can think of, is the number of popups displayed seems
to be related to the number of application containers on the page. For
example, I have one page that is very simple, it displays a list of
data in 4 columns. These are formatted into 4 <td>'s in each of which
there is a DataGrid object. When this page is loaded, I get 4 of these
popups. I see similar results all over the site (though it isnt quite
that simple - soimetimes this page gives 5).
Thanks for any advice in advance
Todd
Nevertheless, the *only* possible reason for getting the
"both secure and non-secure items" popup is that you're
-somehow- attempting to include non-secure items in your secure pages.
I thought it might be images. Maybe they're not.
But you're trying to display both "secure" and "non-secure"
items in your pages, otherwise that popup wouldn't pop up.
Look carefully for the non-secure items in your code.
You'll find them. When you do, secure them.
Have you tried to do a very simple test page,
and start adding things to it, until the warning popsup ?
That might be a good way to figure out what's going on.
Juan T. Llibre, ASP.NET MVP
ASP.NET FAQ : http://asp.net.do/faq/
ASPNETFAQ.COM : http://www.aspnetfaq.com/
Foros de ASP.NET en Español : http://asp.net.do/foros/
======================================
<to********@gmail.com> wrote in message
news:11**********************@g14g2000cwa.googlegr oups.com... Juan,
The base directory for both the files and the images is secured, and if
you click on each of the images being displayed on the page to view
properties, they each have a https://mysite link.
The only thing I can think of, is the number of popups displayed seems
to be related to the number of application containers on the page. For
example, I have one page that is very simple, it displays a list of
data in 4 columns. These are formatted into 4 <td>'s in each of which
there is a DataGrid object. When this page is loaded, I get 4 of these
popups. I see similar results all over the site (though it isnt quite
that simple - soimetimes this page gives 5).
Thanks for any advice in advance
Todd
Does the grid use any images that might be coming from an unsecured
directory?
Like Juan said, something on the page is from a non-secured source.
<to********@gmail.com> wrote in message
news:11**********************@g14g2000cwa.googlegr oups.com... Juan,
The base directory for both the files and the images is secured, and if
you click on each of the images being displayed on the page to view
properties, they each have a https://mysite link.
The only thing I can think of, is the number of popups displayed seems
to be related to the number of application containers on the page. For
example, I have one page that is very simple, it displays a list of
data in 4 columns. These are formatted into 4 <td>'s in each of which
there is a DataGrid object. When this page is loaded, I get 4 of these
popups. I see similar results all over the site (though it isnt quite
that simple - soimetimes this page gives 5).
Thanks for any advice in advance
Todd
Well, at long last I have determined the problem. Its the ASP.Net
ExpertMenu we are using from http://www.aspnetexpert.com/
Im in contact the company now to see if they support SSL. If anyones
had experience with this product before, id appreciate input.
But when I cut it out of the code, everything loads fine. Thanks to
Juan for the idea.
if you hit the page with firefox, you can look at page info->media and see
the unsecure referenece.
-- bruce (sqlwork.com)
<to********@gmail.com> wrote in message
news:11**********************@g14g2000cwa.googlegr oups.com... Juan,
The base directory for both the files and the images is secured, and if
you click on each of the images being displayed on the page to view
properties, they each have a https://mysite link.
The only thing I can think of, is the number of popups displayed seems
to be related to the number of application containers on the page. For
example, I have one page that is very simple, it displays a list of
data in 4 columns. These are formatted into 4 <td>'s in each of which
there is a DataGrid object. When this page is loaded, I get 4 of these
popups. I see similar results all over the site (though it isnt quite
that simple - soimetimes this page gives 5).
Thanks for any advice in advance
Todd
For anyone thats interested, got the update of ExpertMenu. Site runs
like a dream now on https =)
Congratulations, Todd!
I'm glad my suggestion pointed you in the right direction,
but you did the real work !
Juan T. Llibre, ASP.NET MVP
ASP.NET FAQ : http://asp.net.do/faq/
ASPNETFAQ.COM : http://www.aspnetfaq.com/
Foros de ASP.NET en Español : http://asp.net.do/foros/
======================================
<to********@gmail.com> wrote in message
news:11**********************@z14g2000cwz.googlegr oups.com... For anyone thats interested, got the update of ExpertMenu. Site runs
like a dream now on https =) This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Charles A. Lackman |
last post by:
Hello, I have a web site that has a single page secured using SSL. This
page also has Flash Macromedia header on it, Does this cause a conflict?
When you visit the site it says, "This page...
|
by: Charles A. Lackman |
last post by:
Hello, I have a web site that has a single page secured using SSL. This
page also has Flash Macromedia header on it, Does this cause a conflict?
When you visit the site it says, "This page...
|
by: VB Programmer |
last post by:
I created an ASP.NET website and recently got a secure certificate.
Whenever I visit any of the pages IE says
"This page contains both secure and nonsecure items. Do you want to display
the...
|
by: marc.gibian |
last post by:
I am modifying an existing ASP.NET application to make it SSL
compatible. I have already searched the codebase and eliminated all
hardcoded "http" instances, replacing them with a method call that...
|
by: Mantorok |
last post by:
Hi all
This has been driving me nuts for months now, if I access my site from IE
https://db.cornwall.gov.uk/PlanningApplications and then hover over one of
the 2-level menus it comes up with the...
|
by: =?Utf-8?B?cGF0cmlja2RyZA==?= |
last post by:
Hi guys!
I use masterpages for my website,
the inside content is secured (https),
while the header and the footer master files are not,
so, can I get rid of the "This page contains both secure...
|
by: DBLWizard |
last post by:
Howdy All,
I'm fighting with IE on a secure site where I am trying to set the
location of a frame from within javascript using code similar to this.
sHref =...
|
by: mikek12004 |
last post by:
I have recently put https on a page with certificate and everything but when I type https://.. in IE I get the message "this page contains both secure and nonsecure items" why? What is the nonsecure...
|
by: tomaz |
last post by:
Hi
I have a website with multiple included js-files, included css-files...
There is a virtual keyboard programmed (for touchscreen use)
the moment I click on the keyboard icon to open the...
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
| |
