https and http frame mix--access between
I have a site that I am in process of securing (https). Major headaches have occurred due to an inability to share/pass/read info between my frames. When all frames were loaded in http mode, all Javascript worked great. Now I am blending the two modes, I am unable to read or access between frames that not in the same mode.
I need to be able to read info from frame to frame....any suggestions. The work around is going to horrendous if there is no way to make this work.
Thanks
tazman posted this at 09:47 — 9th July 2000.
They have: 99 posts
Joined: May 1999
After going back to my post, I thought I had better be a tad clearer.
I have a multi frame doc. Some frames are accessed using
https://www.site.com/somedoc.html (secure mode)
and others are accessed using
http://www.site.com/otherdoc.html (standard http mode)
I can not read or share info between the two frames. I get a permission denied error in IE. I know there is a security issue, but I thought it only applied between unlike domains. The real problem is that I have a function in one frame that needs to read the url of the other and use this in the function. The frame the function is in is http mode. The other frame is sometimes http and sometimes https. Cant seem to come up with a good way of handling it.
Any help would be greatly appreciated.
Thanks.
Tazman
tazman posted this at 00:51 — 10th July 2000.
They have: 99 posts
Joined: May 1999
Nobody does it better than Murphy...just when you think things are done, he rears his ugly head and puts you in your place.
Can anyone tell me if there is a way to at least determine whether the frame I wish to check is in secure https mode or regular http mode. If I can at least do that, then I can have a control frame in the corresponding mode check the url.
This is driving me crazy. Netscape is indicating that it feels http://www.somewhere.com is a different DOMAIN than https://www.somewhere.com.....IE just tells me permission denied.
I had heard/read at one point that being able to sign your scripts will allow you to read between frames in different domains. I have started the process w/ Microsoft to allow us to sign our scripts. Does anyone have any experience or feedback on this one...
I am not above grovelling at this point. This is killing me!!
Thanks!
Vincent Puglia posted this at 11:14 — 10th July 2000.
They have: 634 posts
Joined: Dec 1999
Hi tazman,
Don't really know what I'm talking about, since I've never played with https, but...I would presume they are different domains also. Insofar as solutions:
1) have you tried cookies? The secure frame should consider a hard drive safe enough to read/write from.
2) I seem to remember netscape having enablePrivilege() (or somesuch, don't have Danny Goodman's Javascript Bible with me, but he probably does at his site, else check out netscape's site.)
Hope this helps
Vinny
Where the world once stood
the blades of grass cut me still
Want to join the discussion? Create an account or log in if you already have one. Joining is fast, free and painless! We’ll even whisk you back here when you’ve finished.