Forum OpenACS Q&A: Re: Different image and css path with SSL?

Collapse
10: Re: Different image and css path with SSL? (response to 1)
Posted by Torben Brosten on 12/08/03 02:27 PM
Hmm.. don't want to regsub the [administer] link to /ecommerce/admin as that doesn't seem to redirect even when RestrictToSSL has ecommerce/admin/* in it... maybe there needs to be a different separater in the field (besides space?). something to sleep on anyway.... goodnight.
Collapse
11: Re: Different image and css path with SSL? (response to 10)
Posted by C. R. Oldham on 12/08/03 05:17 PM
Torben,

If you look back a little in this thread I discuss how you might achieve this by patching ad_login_page so it thinks some of those directories are part of the "login" page, so you can serve the content over https without logging in.

One danger of serving mixed http/https content is that the user will get a warning box that says basically that "some of the content on this page is not being served by https.  Do you want to show this content?"  This can scare non-technical users.