• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 342
  • Last Modified:

Can you please explain this internet explorer message ?

Hello i have my website that auto redirect to secure https, only in internet explorer i am getting this message
--
do you want to view only the webpage content that was delivered securely ?

The webpage contains content that will not be delivered using a secure HTTPS connection which could compromise the security of the entire webpage
---

So if i press yes it give the page with no css loaded and the form don't work ! if i press yes it load correctly so how can i fix to prevent getting this problem as many customers is confusing them and don't what to press !

You can try it , but first you need to set your country than retry it to check the page
an example

https://www.audiominds.net/mydetails.php?section=cart&id=585&qty=1

0
Styleminds
Asked:
Styleminds
  • 3
  • 2
1 Solution
 
hieloCommented:
That is happening because on the browser you are typing
https://....

but the html code is retrieving some files in a NON-secure manner. If you look at the source code you will see:
<link rel="stylesheet" href="http://www.audiominds.net/newincludes/css/basic.css" type="text/css" />

<link rel="stylesheet" href="http://www.audiominds.net/newincludes/css/dropdown.css" type="text/css" />
<link rel="stylesheet" href="http://www.audiominds.net/newincludes/css/rating.css" type="text/css" />
<link rel="stylesheet" href="http://www.audiominds.net/newincludes/css/popup.css" type="text/css" />

Notice that all of them have href="http://...

instead of href="https://...

instead, you need to code them WITHOUT your domain:

<link rel="stylesheet" href="/newincludes/css/basic.css" type="text/css" />

<link rel="stylesheet" href="/newincludes/css/dropdown.css" type="text/css" />
<link rel="stylesheet" href="/newincludes/css/rating.css" type="text/css" />
<link rel="stylesheet" href="/newincludes/css/popup.css" type="text/css" />

this way they will "inherit" the protocol (http or https) used on the address bar.

Open in new window

0
 
StylemindsAuthor Commented:
i put full path as there some links it forced redirected for better url in .htaccess so if there any trick ?
0
 
hieloCommented:
>>there some links it forced redirected
I don't know what you mean by that, in mod_rewrite you typically use regular expressions. If one of your regular expressions is looking explicitly for
http:

all you will need to do is use:
https?:

basically you are saying that the "s" is now optional.

No tricks! You need a relative path to avoid that warning.
0
 
StylemindsAuthor Commented:
but hielo this is a part of the header and it common for http and non https section.
so if there any php trick to do.
0
 
hieloCommented:
You are still confused. You are typing this on the address bar:
http://yoursite.com/file.php

Then file.php contains the following:
<link rel="stylesheet" href="/newincludes/css/basic.css" type="text/css" />

the BROWSER now sees a "conflict of interest" because the original request was for "https", but now that "link" will trigger another request - a request for basic.css - but this  time using "http". This "switching" between https and http is what the warning is all about. This is not a server issue, this is an BROWSER issue, so no there are not php "tricks".

What you need is to give the browser what it expects - either all the links coded as http OR all the links coded as https.

The easy way is to provide relative paths like I suggested above. An alternative would be "SNIFF" the protocol:
<?php
$protocol=isset($_SERVER['HTTPS']) ? 'https' : "http";

?>

then change this:
<link rel="stylesheet" href="/newincludes/css/basic.css" type="text/css" />

to this:
<link rel="stylesheet" href="<?=$prototcol?>://www.audiominds.net/newincludes/css/basic.css" type="text/css" />

but you will need to manually change every link. Again, the easier alternative is to adjust the links to be relative so that the browser uses whatever protocol the user types.
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now