471,579 Members | 1,253 Online
Bytes | Software Development & Data Engineering Community
Post +

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 471,579 software developers and data experts.

Mixing secured (HTTPS) and non-secured (HTTP) content in the samepage

Hi,

Is it possible to have secured (SSL/HTTPS) and non-secured (HTTP)
content in the same page without breaking the security? I am developing
a secured reservation system in which the user can access Google Maps
(not secured). The map is embedded in the page and does not open in a
separate window.

What solution do you recommend? Use iframes? If so, how?

Thank you,

Daniel
Apr 10 '06 #1
2 2923
If you have separate portal windows, one coming from http and the other
from https, then security won't be a problem, as the https window will
always be https.

You just need to get the URL for each window to come from the
appropriate URL.

Apr 10 '06 #2
Daniel Frechette wrote:
Is it possible to have secured (SSL/HTTPS) and non-secured (HTTP)
content in the same page without breaking the security?
That depends on how you want to define security. Sure it is possible to
mix resource retrieved via the encrypted and the unencrypted version of
the protocol. Security is then compromised such that the connection
for resources retrieved via unencrypted HTTP is unencrypted, while the
connections for resources retrieved via HTTPS (HTTP over SSL/TLS) are
encrypted.
I am developing a secured reservation system in which the user can access
Google Maps (not secured). The map is embedded in the page and does not
open in a separate window.

What solution do you recommend? Use iframes? If so, how?


You are off topic here. (It is irrelevant for your concerns that Google
Maps uses XML HTTP requests triggered by client-side scripting.)
PointedEars
Apr 10 '06 #3

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

16 posts views Thread by Paul Sweeney | last post: by
3 posts views Thread by Tim | last post: by
4 posts views Thread by VK | last post: by
2 posts views Thread by WJ | last post: by
2 posts views Thread by Bill W. | last post: by
11 posts views Thread by u.int.32.t | last post: by
399 posts views Thread by =?UTF-8?B?Ik1hcnRpbiB2LiBMw7Z3aXMi?= | last post: by
reply views Thread by XIAOLAOHU | last post: by
reply views Thread by lumer26 | last post: by
reply views Thread by Vinnie | last post: by
reply views Thread by lumer26 | last post: by

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.