HTTPS security and Absolute Links

TheMSsForum.com: The Microsoft Software Forum

Can I use relative links with HTTPS (e.g. <a href=index.html>) or do I
need to use absolute links like <a href=https://www.mysite.com/index.html>?

I've never set up https before. I'm using IIS and I know I'll need a SSL
certificate.


W. Pooh (AKA Winnie P.)
"Viva los legos! Viva!"
Top

Re: HTTPS security and Absolute Links by Ken

Ken
Wed Jul 16 04:30:37 CDT 2008

If you are already connected over HTTPS, then relative links will continue
to work over HTTPS.

If you need to switch protocols (HTTP -> HTTPS or HTTPS -> HTTP) then you
need to use absolute refs, that include the protocol you want to use.

Cheers
Ken

"Christopher M." <no-spamcm_anon76@hotmail.com> wrote in message
news:g5jpuq$4od$1@aioe.org...
> Can I use relative links with HTTPS (e.g. <a href=index.html>) or do I
> need to use absolute links like <a
> href=https://www.mysite.com/index.html>?
>
> I've never set up https before. I'm using IIS and I know I'll need a SSL
> certificate.
>
>
> W. Pooh (AKA Winnie P.)
> "Viva los legos! Viva!"

Top

Re: HTTPS security and Absolute Links by Christopher

Christopher
Wed Jul 16 07:37:44 CDT 2008

Ken Schaefer wrote:
> If you are already connected over HTTPS, then relative links will
> continue to work over HTTPS.
>
> If you need to switch protocols (HTTP -> HTTPS or HTTPS -> HTTP) then
> you need to use absolute refs, that include the protocol you want to use.
>
> Cheers
> Ken

So if part of the site is HTTP and a secure part of the site is HTTPS
then you would need to use an absolute link to qualify the HTTPS?


W. Pooh (AKA Winnie P.)
Top

Re: HTTPS security and Absolute Links by Ken

Ken
Thu Jul 17 06:26:03 CDT 2008


"Christopher M." <no-spamcm_anon76@hotmail.com> wrote in message
news:g5kq2t$sdv$1@aioe.org...
> Ken Schaefer wrote:
>> If you are already connected over HTTPS, then relative links will
>> continue to work over HTTPS.
>>
>> If you need to switch protocols (HTTP -> HTTPS or HTTPS -> HTTP) then you
>> need to use absolute refs, that include the protocol you want to use.
>>
>> Cheers
>> Ken
>
> So if part of the site is HTTP and a secure part of the site is HTTPS then
> you would need to use an absolute link to qualify the HTTPS?

If a user is currently on a page that has been served over HTTP, and you
want to take them to a HTTPS secured page, then "yes", you need to use a
fully qualified URL that includes the relevant protocol.

Cheers
Ken

Top