×

Notice

The forum is in read only mode.
Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1

TOPIC: SSL site and getting a security error in Chrome

SSL site and getting a security error in Chrome 9 years 3 months ago #29386

  • Ray
  • Ray's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
  • Posts: 3
  • Thank you received: 1
Hi,
We have a site with CMC Mailchimp 1.3.1 on Joomla 3.2.4 and the site is using SSL and https urls. We are getting an error on the site in Chrome because of the newsletter sign-up form;
(Note: Chrome will show a security error for any secure page with an insecure <form> call on the page)

The form is using a link with out the https, just http, <form action="http:// . I have looked for the setting for this in the component and module, the Webhooks is using a https url. How can I change the form action to a url with https or just //?
Ray
PS Sorry for post in General forum, didn't notice the Category field on the post.

SSL site and getting a security error in Chrome 9 years 3 months ago #29395

  • Daniel Dimitrov
  • Daniel Dimitrov's Avatar
  • Offline
  • Administrator
  • Administrator
  • Posts: 9618
  • Karma: 155
  • Thank you received: 1081
Hey Ray!
I had a look at our current code base and the action url is:
<?php echo JRoute::_('index.php?option=com_cmc&format=raw&task=subscription.save'); ?>

Joomla then decides how it should look in the html of the page and if it should have the http or https in front of that.
I don't remember what we had in version 1.3, but this is what we have in verslon 1.5, so maybe update to it? Your other option would be to create a template override and to hardcode the url in the module.

Regards,
Daniel
The following user(s) said Thank You: Stefan Basting

SSL site and getting a security error in Chrome 9 years 3 months ago #29399

  • Ray
  • Ray's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
  • Posts: 3
  • Thank you received: 1
Hi Daniel ,
That looks like the same code I found in 1.3.1 in the default.php file
<form action="<?php echo JRoute::_('index.php?option=com_cmc&format=raw&task=subscription.save');?>"
but SSL is enabled in Joomla's Global Configuration settings, why would Joomla use a http url? The url before the index.php?option is not a site url it is like this;
<form id="mc-embedded-subscribe-form" class="validate" novalidate="" target="_blank" name="mc-embedded-subscribe-form" method="post" action=" ourdomain.us4.list-manage.com/subscribe/...******************** ">
So it is a "manage.com" domain url. I don't know where CMC is getting that domain but the one it has in its Webhooks field is a https url.
Thanks for looking at this,
Ray
The following user(s) said Thank You: Stefan Basting

SSL site and getting a security error in Chrome 9 years 3 months ago #29401

  • Daniel Dimitrov
  • Daniel Dimitrov's Avatar
  • Offline
  • Administrator
  • Administrator
  • Posts: 9618
  • Karma: 155
  • Thank you received: 1081
the code that you've pasted doesn't come from cmc. you've added another module to your site for subscriptions.
The following user(s) said Thank You: Ray

SSL site and getting a security error in Chrome 9 years 3 months ago #29402

  • Ray
  • Ray's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
  • Posts: 3
  • Thank you received: 1
Hi Daniel,
I am very sorry to have taken up your time, the site has CMC 1.3.1 installed but the newsletter sigin-up is in a custom module I have now found.
Thank you
Ray
  • Page:
  • 1
Time to create page: 0.150 seconds