1
technigrafa
Secure liaise pages with SSL - broken lock

We are using XOOPS for this site and want to secure a couple Liaise forms using our SSL certificate, but in Firefox we get a broken lock icon and in IE it says some items are not encrypted:

https://www.magnet.edu/modules/liaise/?form_id=4

I've clicked the broken lock with Firefox and checked out the media links, but they all seem to be okay. How do I find out what's causing the SSL to break? Is it the Liaise form submit URL? If so, how do I change it to submit to the https address instead?

2
technigrafa
Re: Secure liaise pages with SSL - broken lock

*bump*

3
moodie
Re: Secure liaise pages with SSL - broken lock
  • 2006/5/30 21:01

  • moodie

  • Just popping in

  • Posts: 3

  • Since: 2006/5/30


Im having the same issues as you but with osC module. From my understanding you can not have a secure page with insecure objects in it such as your images. The images will be pointing to your http:// URL. For the images to become secure they need to be pointing to your https:// URL.
The images path is defined with in the code as a varible called $xoops_imageurl.
I have not been able to work out which file the $xoops_imageurl is defined in yet. Im hopeing that once I have worked out where it is defined ill be able to check to see if the page is ment to be a secure page and then change the $xoops_imageurl to a https url or im going to have all images point to the https:// url.

Im only a newbie on this so any help or clues from anyone would be good.

4
technigrafa
Re: Secure liaise pages with SSL - broken lock

Thanks, yeah I remember the OSC integration into XOOPS was tricky for me to get the SSL stuff working. I have a contact that is really good at OSC - if you need further help, I can give you her contact info, but she is not cheap and she is very busy

All of my images in the site I posted have relative URLs, so they don't start with http or https. As far as I know that won't break the SSL validation, but I could be wrong about that.

I was wondering if the line:

<form name="liaise_5" id="liaise_5" action="http://www.magnet.edu/modules/liaise/index.php" method="post"


was causing the problem. I'm not sure how forms affect SSL validation.

Anyone have any idea about this stuff?

5
technigrafa
Re: Secure liaise pages with SSL - broken lock

Whoops, Okay I see what's causing my problem. It's the javascript xoops.js line after the head. When I remove that I get a pretty non-broken lock icon in the browser.

So I guess I'll hunt down where that code comes from and change the http to https.

Anyone know where the http:// comes from? In the theme is just has:

<script type="text/javascript">

script>


And I don't see anything in the /include/xoops.js that creates the http part of the link.

Anyone else know?

Anyway, hope this helps someone.

6
technigrafa
Re: Secure liaise pages with SSL - broken lock

Okay, It's in header.php near line 88:

Change
$xoopsTpl->assign('xoops_js''//-->.XOOPS_URL.'/include/xoops.js">

Login

Who's Online

371 user(s) are online (298 user(s) are browsing Support Forums)


Members: 0


Guests: 371


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits