Coldfusion code looking for CGI.https_keysize lt 128 and Blocking the user
Hello Experts,
CF Code is looking for CGI. https_keysize variable and does an abort when its lt 128.
<cfif CGI.https_keysize LT 128>
We will only allow 128-bit encrypted connection between your machine and our web site.
Your Internet browser is not able to support High Encryption, please contact your Helpdesk or System Administrator to apply 128-bit Encryption Pack on your Internet browser.
<cfabort>
</cfif>
I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string] is empty as I dump the cgi variable
I am unaware how to resolve this issue, Do I need to something for the cg.https_keysize to return some value.?
ColdFusion Language
Last Comment
SidFishes
8/22/2022 - Mon
SidFishes
I'm confused by this
"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string] is empty as I dump the cgi variable"
CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.
Dan Schimo
ASKER
Thank you for your input SidFishes . This code was running on some server, before it came to me. Yes, previously they had https: in the URL. Can you please let me know how to get the Https in the URL on this Current server.
"I have this application running on IIS , but its not https in the URL.
HTTPS_KEYSIZE [empty string] is empty as I dump the cgi variable"
CGI variables are only valid for the current request. If it's not https in the url, you won't get an https_keysize value.