We are having an issue with our website with iframes. Here are the particulars:
1. Our main site is hosted on one server and our database driven membership access site is on an another server using an association database called iMIS with the ISGWeb component. These services are displayed through the main site via an iframe. This has worked up until the last few months when more and more users aren't seeing the full iframe and being presented with a request to view non secure content.
2. The main website is not secure. The membership access site is secure.
3. Our vendor for the iMIS database suggests the solution is to install an SSL cert on the main server and have the whole site secure. I am not a complete web expert, but that seems not to be a best practice. I am open to other opinions.
4. I have done some research and came across something related to the same origin policy. I am not a Java expert, so while I understand the fixes presented for this issue, I don't know how to implement them.
Any help or thoughts on this matter would be really appreciated. More and more users are having the issue which I suspect is due to browser upgrades.