You are viewing this forum as a guest. Login to an existing account, or create a new account, to reply to topics and to create new topics.
How do I make a new dynamic form, a secure form?
I have a new form for a customer to submit credit card information manually. I used to have this form on a static page, so I would preface the link with https. But now I'm trying to integrate it the proper ccp way, and I am calling it via this link:
<a href="(CGIVAR)common_url(/CGIVAR)&pg=form&ref=ste_form_ccauth">
How do I make that link https instead of http?
And also, is there a shorter/smarter link I can email to a customer, than:
https://www.stagesupply.com/cgi-bin/ccp … orm_ccauth
Thanks,
Nathan
Offline
<a href="(CGIVAR)store_secure_site_url(/CGIVAR)&pg=form&ref=ste_form_ccauth">
You can make the link prettier if you use a mod-rewrite in your .htaccess file... otherwise, no.
Offline
If you are on a unix server and use the apache web server (most web servers are) with mod_rewrite enabled (a fair amount are) then you can send them to https://www.stagesupply.com/ccinfo and then write a rule in your .htaccess file like:
RewriteEngine On
RewriteRule ^ccinfo https://www.stagesupply.com/cgi-bin/ccp … orm_ccauth [R=301]
This will send them to the SSL secure page as a 301 redirect from the simple, shorter url.
This is just a sample, of course. You may need to "fine tune" it for your specific server and situation.
-Stephen
Offline
I asked how to make this link secure:
<a href="(CGIVAR)common_url(/CGIVAR)&pg=form&ref=ste_form_ccauth">
Rachel said use this instead:
<a href="(CGIVAR)store_secure_site_url(/CGIVAR)&pg=form&ref=ste_form_ccauth">
I tried that but I get a 404. I switched back to the top version and it works, albeit unsecure.
I did notice that when I pass my mouse over the link, the first link yields:
http://www.stagesupply.com/cgi-bin/ccp5 … orm_ccauth
while the second link yields:
https://www.stagesupply.com/cgi-bin/ccp … orm_ccauth
with the usr etc. numbers missing, in case that is relevant.
So something in my site setup is not right? Any ideas what?
Thanks,
Nathan
Offline
I did the mod rewrite rule that Stephen suggested above.
When I use it in MSIE7 it warns of mixed secure and nonsecure content, and it turns out the nonsecure content is the "submit" and "cancel" buttons. These same buttons show up as secure during the secure checkout phase.
This is a newly created dynamic form that I want to be secure.
Any ideas on how to fix this nonsecure image problem?
Thanks,
Nathan
Offline
add a:
&secure=Y
to the url that you redirect to in your rewrite rule.
Offline