Opening a secured site

[LonnieJohnson]

I have an asp.net 2.0 application that opens a window for a crystal report with java script.

The code is...

        Dim strRedirect As String
        Dim intRecordID As Integer = gvLogsFiltered.SelectedRow.Cells(18).Text.ToString
        strRedirect = "CaseLogReport.aspx?ID=" & "{command.RECORDID} = " & intRecordID
        Dim strScript As StringBuilder = New StringBuilder
        strScript.Append("<script language=JavaScript>")
        strScript.Append("window.open('" + strRedirect + "','_new', 'toolbar=no,menubar=no,location=no,resizable=yes,scrollbars=yes,left=0,top=0');")
        strScript.Append("</script>")
        RegisterStartupScript("subscribescript", strScript.ToString)

My problem is that every time this window opens the user gets a prompt telling them that there are secure and none secure items on this page. The actual app is an https secured site.

Should I be using different settings in my javascript to open it as secure?

ProDev, MS Access Applications
Visit me at ==>

http://www.prodev.us

May God bless you beyond your imagination!!!

 

[BabyJeffy]

You need to ensure that ALL elements on that secure page are served from the same secure domain. This includes all images included on the page (make sure they start with

https://).

Do this for ALL content on the page and your problems will disappear.

Cheers,
Jeff

[tt]Jeff's Page @ Code Couch

http://www.codecouch.com/jeff/blog/

http://www.coedit.co.uk/

[/tt]

What is Javascript? FAQ216-6094

 

[monksnake]

I ran into this problem about 2 weeks ago. It was cause I had <iframes> in my pages that didn't have a src specified.

What I did to fix this was (crappy fix, personally I hate the iframes too, boss wanted it) create a blank html page and made the src = that page.

<.

 

[LonnieJohnson]

The page is a page within the same domain. It is part of the same app. Same project.

The page is an aspx page that has a crystal report viewer on it. The report itself is also part of the same domain and project.

ProDev, MS Access Applications
Visit me at ==>

http://www.prodev.us

May God bless you beyond your imagination!!!

 

[monksnake]

My iframes only serve to put a "see-through" shield over the application to disallow other user requests while the app is busy.


Maybe on your redirect, you should include the entire URL with https.

This is a stab in the dark.

<.

 

[Turkbear]

Hi,
Which report viewer - if the ActiveX one, that may be 'seen' as non-secure..





To Paraphrase:"The Help you get is proportional to the Help you give.."

 

[LonnieJohnson]

Yes Turkbear, we are using the ActiveX

No IFrames monksnake

Baby Jeffy, I changed my redirect to include the entire site name with the https and still get the popup warning.



ProDev, MS Access Applications
Visit me at ==>

http://www.prodev.us

May God bless you beyond your imagination!!!

 

[BabyJeffy]

Assuming there are no images etc on the secure page (linked logos etc) that are not served from https as well, then it looks like ActiveX is your root cause. If you remove the ActiveX, do you still get the warning message?

Cheers,
Jeff

[tt]Jeff's Page @ Code Couch

http://www.codecouch.com/jeff/blog/

http://www.coedit.co.uk/

[/tt]

What is Javascript? FAQ216-6094