jallenamdg
asked on
Non-SSL Cart Not Displayed in SSL-secured site
I am relatively new to e-commerce, so pardon my ignorance if this is a simple problem to solve.
I am working on an SSL-secured site that has an external shopping cart controlled by a drop-ship vendor that is displayed via an iframe. The external shopping cart is not secured via SSL and thus cannot display (FF automatically blocks it and IE and Chrome as for user input). If the external vendor is unwilling to make the shopping cart operate under SSL, is there any way to work around the blocked content? I'm thinking not and understand why the browsers are blocking the content. However, because I have no leverage with the external vendor (I'm a low-volume customer and they have few competitors given the special nature of their product line), I'm looking for a workaround.
Thanks!
I am working on an SSL-secured site that has an external shopping cart controlled by a drop-ship vendor that is displayed via an iframe. The external shopping cart is not secured via SSL and thus cannot display (FF automatically blocks it and IE and Chrome as for user input). If the external vendor is unwilling to make the shopping cart operate under SSL, is there any way to work around the blocked content? I'm thinking not and understand why the browsers are blocking the content. However, because I have no leverage with the external vendor (I'm a low-volume customer and they have few competitors given the special nature of their product line), I'm looking for a workaround.
Thanks!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your posts. It's what I expected
Gary - Are you suggesting writing code for a "local" cart that manages the communication between the secure app and the external cart?
Scott - Can't connect to cart via https - The cart is hosted by an e-commerce provider and the cart doesn't have the same name. Get huge warning in the browser- "You attempted to reach XXX.com, but instead you actually reached a server identifying itself as yyy.com." Given my past interactions with the vendor, I could tell him 7 ways to Sunday why he should move his cart under SSL and even offer to do it for him, but he has the attitude of, "if it ain't broken, don't fix it..."
Gary - Are you suggesting writing code for a "local" cart that manages the communication between the secure app and the external cart?
Scott - Can't connect to cart via https - The cart is hosted by an e-commerce provider and the cart doesn't have the same name. Get huge warning in the browser- "You attempted to reach XXX.com, but instead you actually reached a server identifying itself as yyy.com." Given my past interactions with the vendor, I could tell him 7 ways to Sunday why he should move his cart under SSL and even offer to do it for him, but he has the attitude of, "if it ain't broken, don't fix it..."
Yep,
But really he should have a secure cert - how do people checkout? Or do they checkout on your site which would beg the question why are you using them for your cart?
But really he should have a secure cert - how do people checkout? Or do they checkout on your site which would beg the question why are you using them for your cart?
ASKER
Good idea conceptually but project doesn't have sufficient budget to code it this way
Can you at least connect via https or is that turned off?
I hope you are making enough money for the risk.