• 12

A PHP Error was encountered

Severity: Notice

Message: Undefined index: userid

Filename: views/question.php

Line Number: 191


File: /home/prodcxja/public_html/questions/application/views/question.php
Line: 191
Function: _error_handler

File: /home/prodcxja/public_html/questions/application/controllers/Questions.php
Line: 433
Function: view

File: /home/prodcxja/public_html/questions/index.php
Line: 315
Function: require_once

name Punditsdkoslkdosdkoskdo

Images on IIS server not keeping HTTPS protocol

When using an HTTPS connection we are receiving the following warning:

"Your connection is encrypted with 128-bit encryption. However, this page includes other resources which are not secure."

PROBLEM: We narrowed down the issue to the images on the SSL page. If we paste an SSL URL into a browser, it redirects to a NON-SSL connection.

EX: We paste " https://www.example.com/images/checkout.gif " into a browser and it immediately redirects to " http://www.example.com/images/checkout.gif "

We're running the following server specs:

Server: Windows Server 2003 Web Edition

IIS Version: 6.0

We've checked the configuration settings and everything appears to be fine.

EDIT: We tried this same issue on a local server and the redirection does NOT occur. Using the "HttpFox" firefox plugin we have seen that we receive a 302 redirect from https to http on the production server. When we performed the same test on the local server, the 302 redirect does not happen. Checking the IIS 6 configurations on both servers shows no differences.

    • Can you verify that the server is actually sending the redirect? If you send the request by hand, what's the output?
      • 2
    • @MikeyB Using the "HttpFox" firefox plugin I see that the GET of the https image sends a 302 redirect to the http version.

More information needed, so it's probably time to break out the difference engine.

Grab the Web Deployment Tool (MSDEPLOY) from microsoft.com, and create a package from the working web server.

Then, do an msdeploy -verb:sync with -whatif to compare the package with the prod server, and reveal differences in configuration.

If there is no difference, they will perform identically. It's not, so there is one, it's just not where you've looked so far.

  • 0
Reply Report

It turns out the issue was caused by an SSL module that we weren't aware we had. The module in question was named secureWebPages. We had to add the extra paths to the component to ensure that images, scripts and styles came across as https as well. We changed our configuration file from ...

<secureWebPages enabled="true" xdt:Transform="Insert">
  <directory path="/checkout" />

to ...

<secureWebPages enabled="true" xdt:Transform="Insert">
  <directory path="/images" ignore="true" />
  <directory path="/styles" ignore="true" />
  <directory path="/scripts" ignore="true" />
  <directory path="/checkout" />
  • 0
Reply Report

Trending Tags