haku Posted May 17, 2010 Share Posted May 17, 2010 I have a form. I've set the action of the form to HTTPS like this: <form method="post" action="https://www.example.com"> But when I use the firefox Live HTTP Headers plugin to check the headers, it shows the posted URL being HTTP and not HTTPS. Does anyone have any idea of what I'm missing? Unfortunately, I can't post a link as the site is still in development. Quote Link to comment Share on other sites More sharing options...
trq Posted May 17, 2010 Share Posted May 17, 2010 The form itself needs to be within a https domain I'm certain. Quote Link to comment Share on other sites More sharing options...
haku Posted May 17, 2010 Author Share Posted May 17, 2010 That's what I thought as well, but was told otherwise. Seems that maybe I was misinformed. Quote Link to comment Share on other sites More sharing options...
haku Posted May 19, 2010 Author Share Posted May 19, 2010 Turns out you can post to an SSL page from a non-SSL page. I had a javascript issue - the login form I'm creating is in a popup window that fades in when a link is clicked. The action was properly set to HTTPS, but I wasn't returning FALSE on an onclick action. Not sure exactly why that meant that it wasn't posting to HTTPS, but that's what the result was. Returning FALSE solved the problem, and the form now properly posts to the SSL page. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.