Environment:
############
FreeBSD UNIX
Drupal 5.12
CleanURLs enabled
Ubercart 1.6
Secure Pages (enabled for:
node/add*
node/*/edit
user/*
admin*
*cart*
cgi-bin/webscr
cgi-bin/webscr*
*cgi-bin/webscr*
*throbber*

and ignored pages:
*/autocomplete/*
)

Comodo EV SSL
############

problem:

when getting shipping quotes in checkout (/cart/checkout page) either automatically after selecting that shipping address is the same as billing address or after clicking "Calculate Shipping" button the error message (popup) appears in IE only saying that this page contains both: secure and non secure pages.

the issue can be found at:

http:// xado shop (one word) dot com dot au website

any help/advise would be highly appreciated.

Comments

ivrh’s picture

ivrh commented

any suggestions from ubercart team?

ivrh’s picture

ivrh commented

this isn't SSL issue. The error appears only when shipping quotes are called.

ivrh’s picture

ivrh commented

anyone?

rszrama’s picture

rszrama commented
Status: Active » Postponed (maintainer needs more info)

All I can figure is the progress bar image isn't being grabbed via HTTPS for that... but I don't see why it wouldn't then happen for the payment details box. I'm at a loss, honestly.

ectogon’s picture

ectogon commented

I've just run into this issue too. I don't see any non secure requests being made. I did notice that IE says it's requesting about:blank. IE may be treating about:blank as insecure :/

I think this is caused by the href="#" anchor for the collapsing panes. I'll come back if I can track this down!

tr’s picture

tr commented
Category: bug » support
rudders’s picture

rudders commented

Subscribe (I have same issue with json/Ajax calls from editablefelds module)

tr’s picture

tr commented
Status: Postponed (maintainer needs more info) » Closed (won't fix)

This issue comes up from time to time in the forums on ubercart.org, which is where all support issues should be raised BTW. If you have this problem please search there. The solution is always to identify the resource that is being requested by HTTP instead of HTTPS and fix it. Usually a .css or image file that can't be found ...