Please Note:
HierMenus is protected by copyright laws. Use of the HierMenus code requires a paid licensing agreement.
Click Here to Register

Site Navigation
Bulletins
About
Documentation
FAQ
Samples
Known Issues
Technology Jobs

internet.commerce

Partner With Us
Dental Insurance
KVM Switch over IP
Prepaid Phone Card
Promotional Golf
Corporate Gifts
Shop Online
Promos and Premiums
KVM Switches
Calling Cards
Auto Insurance Quote
Cell Phones
Televisions
Baby Photo Contest
Hurricane Shutters
internet.com

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers
 
HierMenusCentral Enhance the Functionality of Your Web Site with DHTML HierMenus.
    

home / issues / issue #29

Issue:Mixed Content Security Warnings with IFrame Masking
Browser:IE 5.5+
Platform:Windows
Description:When using the IFrame masking method to allow HierMenus to be displayed over the top of drop down form elements, Flash or Java Applets, or IFrames (see Known Issue #1) on a secure (HTTPS) site, you may receive multiple mixed content security warnings from Internet Explorer.
Cause:The warnings are generated when the IFrames that will be inserted between the menu and the other page elements are created. If the page that is loaded into the IFrame is not also from the same HTTPS server that the actual HTML page is from, Internet Explorer generates a warning about potentially non-secure content being retrieved as part of your secure page. This warning is also triggered if you create and dynamically add an IFrame to the page without any specified content.

We initially identified and discussed this issue as a part of the HierMenus 6.0.1 release. Our initial 6.0 HierMenus did not load any page into the IFrame, which we then unfortunately learned triggers the content warnings in the same manner as a non-https page would. In version 6.0.1, we thought we could bypass the warnings by loading a "void" page into the IFrame:

this.IEMask.src="javascript:void(0)";
While this fix removed the warnings in our own testing here, several users have written to let us know that the problem still remains in their implementations. Hence, the issue remains open at this time.
Workaround:The only workaround we've found that removes the security warnings in all situations is to load an actual page into the IFrames from the secure server as part of the IFrame mask creation process. You can do this by first creating a blank page on your server, and then altering the HM_f_IEMaskCreate in the HM_Loader file to load your new page. Specifically, find this line:

this.IEMask.src="javascript:void(0)";
and change it to something like this: 
this.IEMask.src="/myEmptyPage.html";
The process is a little trickier in the space optimized loader; but if you search the file for the javascript:void(0) keyword you should be able to find and change it easily enough.
Posted:June 17, 2005


JupiterOnlineMedia

internet.comearthweb.comDevx.commediabistro.comGraphics.com

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info


Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers
Solutions
Whitepapers and eBooks
IBM eBook: Planning a Service Oriented Architecture
IBM eBook: Choosing the Right Architecture--What It Means for You and Your Business
Microsoft Article: Will Hyper-V Make VMware This Decade's Netscape?
Avaya Article: Using Intelligent Presence to Create Smarter Business Applications
Intel Go Parallel Article: Getting Started with TBB on Windows
Microsoft Article: 7.0, Microsoft's Lucky Version?
Avaya Article: How to Feed Data into the Avaya Event Processor
IBM Article: Developing a Software Policy for Your Organization
Microsoft Article: Managing Virtual Machines with Microsoft System Center
Intel Go Parallel Article: Intel Threading Tools and OpenMP
HP eBook: Storage Networking , Part 1
Microsoft Article: Solving Data Center Complexity with Microsoft System Center Configuration Manager 2007
MORE WHITEPAPERS, EBOOKS, AND ARTICLES
Webcasts
HP Video: StorageWorks EVA4400 and Oracle
HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind
 Microsoft Silverlight Video: Creating Fading Controls with Expression Design and Expression Blend 2
MORE WEBCASTS, PODCASTS, AND VIDEOS
Downloads and eKits
Red Gate Download: SQL Toolbelt and free High-Performance SQL Code eBook
Iron Speed Designer Application Generator
 MORE DOWNLOADS, EKITS, AND FREE TRIALS
Tutorials and Demos
Silverlight 2 App and Walkthrough: Leverage Silverlight 2 with SQL Server and XML
IBM Article: Enterprise Search--Do You Know What's Out There?
HP Demo: StorageWorks EVA4400
 Microsoft Article: The Progress and Promise of Deep Zoom
Microsoft How-to Article: Get Going with Silverlight and Windows Live
MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES
Created: 6/17/2005
Updated: 6/17/2005
URL: http://www.hiermenuscentral.com/issues/29.html