Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.After upgrading to Drupal 4.7 with the appropriate version of the secure pages module, I get the redirect messages and the "secure and nonsecure" items message when viewing my site's secure pages with Internet Explorer (not with Firefox!).
I have tried to apply the following fix to drupal's drupal.js file, as described here:
http://drupal.org/node/64711
And here:
http://drupal.org/node/60565
I have also checked that all of my links are relative; I do have links to my style sheets in page.tpl.php like this: /style.css. But I tried deleting these styles and they had no effect on the secure/non-secure messages.
Is there something that needs to be changed in this module to address the IE bug?
Thanks for your help.
Comments
Comment #1
bomarmonk commentedThis may be related: with secure pages enabled, my site's mission statement disappears... odd. I disable the secure pages module, and the mission statement returns.
Comment #2
gordon commentedThis not a secure pages issue. Secure pages only redirects between the secure and insecure pages.
The most likely candidate for this problem is flash, which has a pointer to insecure pages.
Comment #3
bomarmonk commentedAre we talking Macromedia Flash? I don't have any flash, as far as I know... any suggestions how to resolve this? Thanks for your feedback or suggestions.
Comment #4
gordon commentedYour drupal pages should be fine under 4.7. If you have things like adsense, or other banners, embedded objects then this is what maybe causing the issue.
Comment #5
bomarmonk commentedNo Adsense, although I do have CiviCRM... and related blocks enabled. Could this be the problem?
Comment #6
bomarmonk commentedHmmm.... even without the patch the mission statement for my site disappears... odd (this could be an unrelated theme issue but it does seem to happen only when secure pages is enabled).
Also, I tried disabling CiviCRM and the non-secure messages still show up. I tried adding the switch code to the civiCRM settings file in my sites directory. The issue is still unresolved.
I thank you for any further suggestions...
Comment #7
gordon commentedCheck the page for http links, also check any images that are being loaded, this included stuff from your css.
If you can post a link to the problematic page and I wil take a look if I get a chance.
Comment #8
bomarmonk commentedPretty much every page that is secured is getting the messages: http://www.alpinecountyca.com/ (I currently have the secure pages module disabled).
Comment #9
gordon commentedI have found your problem. It is the valid xhtml icon which is being retrived from a in-secure site.
http://www.w3.org/Icons/valid-xhtml10
Gordon
Comment #10
gordon commentedComment #11
bomarmonk commentedThank you. I guess I should have figured this one out. Sorry to trouble you.
Comment #12
(not verified) commented