Security Alert Message box

pkgal79 · June 10th, 2003, 02:59 AM

I have developed an ecommerce website, site1. site1 is redirected to a secure website site2.At site2 user has to enter his credit card information and then redirected back to site1, to view the final status of his credit card transaction. While being redirected from site2 to site1, a security alert message box(saying that you are about to redirected to unsecure site blah blah )is displayed.
Is there anyway to prevent this message box.

meow · June 11th, 2003, 12:31 AM

I hope not.

Why would you want to do something like that? AFAIK it's there just to make the user aware that he is no longer on a secure site.

(o<
//\ =^..^=

vknowles · June 11th, 2003, 08:58 AM

This feature is user-dependent. The user can configure their browser not to display the message if they want to.

You (the developer) cannot.

I agree with meow that this is a good feature to have on the browser.

-Van
(Old dog learning new tricks...)

pkgal79 · June 12th, 2003, 01:17 AM

Quote:

quote:Originally posted by pkgal79
I have developed an ecommerce website, site1. site1 is redirected to a secure website site2.At site2 user has to enter his credit card information and then redirected back to site1, to view the final status of his credit card transaction. While being redirected from site2 to site1, a security alert message box(saying that you are about to redirected to unsecure site blah blah )is displayed.
Is there anyway to prevent this message box.

pkgal79 · June 12th, 2003, 01:21 AM

Actually some customers get confused by this message. They think that their credit card info is being passed to the unsecure website(as somewhat stated by message box) and thus they cancelled the order processing prematurely.Although no secure info is sent to site1, only the results saying yes or no is displayed at merchant site(site1)

vknowles · June 12th, 2003, 09:20 AM

Okay, then what you need to do is:
1) Put all the credit-card transaction pages on the secure site. Or make site1 secure during the checkout process. This would be consistent with other e-commerce sites. It _think_ if site1 is also secure, the browser will not issue a warning.

Or,

2) As soon as the credit-card information is collected on site2, you display another page _also_ on site2. This page says to the user that their credit card information has been saved in a secure manner and they will now be sent back to site1 to complete their order, and they may see a message saying they are being directed to an insecure site, but that's okay because the credit-card information is already saved, etc., however you want to say it. And then, they have to press a button to go back - otherwise, they might not read the message. (Or you could put it on a timer and redirect after 15 seconds or whatever.)

In other words, you have to work around this problem, because you _cannot_ make that browser warning go away!

:)

-Van
(Old dog learning new tricks...)