Need opinion

[Dathremar]

Just wanted to hear you opinion if this is doable or not?

 

I have an web application which consists of iframes. My problem is that i want 1 of the iframes to be made with https (some data sending is made from here). But here i get the problem of restricted cross domain scripting.

 

So my question is : Is there a chance to make only one part of the application on https and the other part to stay on http, or I need to make the necessary changes to the whole application to be transferred to https?

 

P.S. After reading this text, I see it somehow confusing even to myself (:?) , but post a question and i will try to clarify it

[bluejay002]

Sorry but I am not getting the idea why would you want to. If you want to employ security, then why not use HTTPS all the way? I haven't tried using both but I think it would be better to use HTTPS all the way than doing only a part of it.

[Dathremar]

I agree with You on that, but the thing is that this is massive application and asking me to implement "only" on the part where is the data exchange is made.

 

So I am trying to evaluate if I should ask for more time and adopt whole application on https or is there a way I can only make that part (which is included in an iframe) with https.

 

 

[RichardRotterdam]

could you explain what piece of the application you want to fix/change and what the problem is with that? Maybe that would point you in the right direction