Results 1 to 4 of 4
  1. 11 Oct 2006, 04:43 PM #1
    madk's Avatar
    madk
    madk is offline Zen Follower
    Join Date
    Jun 2006
    Location
    Michigan
    Posts
    196
    Plugin Contributions
    0

    Default Getting Rid Of Security Warning

    When a user logs into my cart and then is forwarded back to the index I get the popup that prompts the user if they want to display both secure and non-secure items.

    I just went through and fixed all my links and images that were hard coded with http which I thought would fix this error. But alas it still pops up.

    Viewing my source I noticed that my search box still contains http instead of https. Would this cause the warning?

    Code:
    			<span class="blue">Site Search:</span>            <? // SEARCH FORM ?>
			<?=zen_draw_form('quick_find', zen_href_link(FILENAME_ADVANCED_SEARCH_RESULT, '', 'NONSSL', false), 'get')?>
			<?=zen_draw_hidden_field('main_page',FILENAME_ADVANCED_SEARCH_RESULT)?>
			<?=zen_draw_hidden_field('search_in_description', '1')?>            
			<?=zen_draw_input_field('keyword', '', 'class=form_search')?>            
			<input name="Input" type="image" src="<?=DIR_WS_TEMPLATE?>images/go.jpg" class="abs">
			</form>
    I do notice the nonssl flag there but I'm not exactly sure how this works? Any help would be greatly appreciated.
  2. 11 Oct 2006, 05:30 PM #2
    ajcannon
    ajcannon is offline New Zenner
    Join Date
    Aug 2006
    Posts
    68
    Plugin Contributions
    0

    Default Re: Getting Rid Of Security Warning

    Quote Originally Posted by madk View Post
    When a user logs into my cart and then is forwarded back to the index I get the popup that prompts the user if they want to display both secure and non-secure items.

    I just went through and fixed all my links and images that were hard coded with http which I thought would fix this error. But alas it still pops up.

    Viewing my source I noticed that my search box still contains http instead of https. Would this cause the warning?

    Code:
    			<span class="blue">Site Search:</span>            <? // SEARCH FORM ?>
			<?=zen_draw_form('quick_find', zen_href_link(FILENAME_ADVANCED_SEARCH_RESULT, '', 'NONSSL', false), 'get')?>
			<?=zen_draw_hidden_field('main_page',FILENAME_ADVANCED_SEARCH_RESULT)?>
			<?=zen_draw_hidden_field('search_in_description', '1')?>            
			<?=zen_draw_input_field('keyword', '', 'class=form_search')?>            
			<input name="Input" type="image" src="<?=DIR_WS_TEMPLATE?>images/go.jpg" class="abs">
			</form>
    I do notice the nonssl flag there but I'm not exactly sure how this works? Any help would be greatly appreciated.
    What is your website address? Also, do you have SSL enabled on your site?
  3. 11 Oct 2006, 05:32 PM #3
    madk's Avatar
    madk
    madk is offline Zen Follower
    Join Date
    Jun 2006
    Location
    Michigan
    Posts
    196
    Plugin Contributions
    0

    Default Re: Getting Rid Of Security Warning

    The site is www.beadhaven.com and yes I have SSL enabled.
  4. 12 Oct 2006, 02:46 AM #4
    DrByte's Avatar
    DrByte
    DrByte is offline Sensei
    Join Date
    Jan 2004
    Posts
    66,373
    Blog Entries
    7
    Plugin Contributions
    274

    Default Re: Getting Rid Of Security Warning

    1. Your Login page does not show the security padlock until after the customer submits their information. Many will not like that.

    2. Your google analytics code is causing your security warning. References to http:// content in a "src=" parameter while on a https:// page.
    Code:
    <script src="http://www.google-analytics.com/urchin.js" type="text/javascript">
    .

    Zen Cart - putting the dream of business ownership within reach of anyone!
    Donate to: DrByte directly or to the Zen Cart team as a whole

    Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
    Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
 

 
« Previous Thread | Next Thread »

Similar Threads

  1. Suddenly getting SSL Security Warning
    By katco in forum General Questions
    Replies: 51
    Last Post: 11 Aug 2011, 04:32 PM
  2. Need to get rid of security message
    By mrdean11 in forum PayPal Website Payments Pro support
    Replies: 6
    Last Post: 5 Jan 2011, 02:27 PM
  3. Can'g get rid of Security warning
    By dridge in forum Basic Configuration
    Replies: 3
    Last Post: 19 Feb 2010, 03:28 PM
  4. getting a security warning on contents in IE and FF
    By beyre in forum General Questions
    Replies: 10
    Last Post: 9 Nov 2009, 12:53 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR
Content and Graphics Copyright (c) 2003 - 2024 Zen Ventures, LLC - all rights reserved
Zen Cart® is a Registered Trademark of Zen Ventures, LLC