Milonic provide full featured pull down web menus for some of the worlds largest companies
click here to see what it can do for you

Download Milonic DHTML Menu
Buy Milonic DHTML Menu

Back To Start Of Archive
Taken From The Forum: Help & Support for DHTML Menu Version 5+
Forum Topic: Click to view post
Last Updated: Saturday July 14 2012 - 06:07:14

Want to use menus as login form on non-ssl pages


Poster: jbruso
Dated: Wednesday February 15 2006 - 20:28:15 GMT

I have a login form in a button (The orange eservices button at the top right of the page) http://dev.sheridan.edu/

I need this form to submit via SSL, but I don't want to make every page in my website SSL. So, I need to be able to submit the form via a secure connection.

At first, I thought I would have to ditch my idea altogether becuase it would require me to make all of my pages https... but then I saw http://www.bankofamerica.com and noticed that they have an online account login form on the home page and their home page is not https...

So, now I'm curious.. is there something I can do so that my login form will be considered secure, https on a non-https page??


Would love to hear some creative ideas on the matter..


Poster: Ruth
Dated: Friday February 17 2006 - 6:45:43 GMT

Hi,

Just to be clear, I do not do this kind of advanced stuff :) So, having said that I took a look at their code and it looks as if 'action' part of the form is called from an https address.
Code:
document.frmSignIn.action = "https://onlineid.bankofamerica.com/cgi-bin/sso.login.controller";


I don't have an account there so I don't know if that takes you to an https section of the site once you sign in. I know that everything to do with my bank that has anything to do with logging in takes you to https sections.

You have a professional license, well, if you renewed it you still have it, so you might contact Milonic since this is a security issue.

I think you're going to find that you might be able to do it having the login on the http, but that somehow it goes to https and sends the user to https when logged in. That's just a guess!

Ruth