Win a copy of Design for the Mind this week in the Design forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Switch back to Http from Https

 
Vishnu Prakash
Ranch Hand
Posts: 1026
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Can any one kindly guide me how to switch back to http protocol from https.
 
Rajesh Vijaya
Ranch Hand
Posts: 48
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
hey vishnu ,

i found this link ...in google...if this is of relevant to you ..

http://swforum.sun.com/jive/thread.jspa?threadID=46767&messageID=139800
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser Redhat VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
An absolute link with the 'http://' scheme will do it.

No matter how you do it, there will be some issues to watch for.
Many containers won't keep the same session for secure and non secure traffic.
In other words, you'll lose your session when you switch.

Also, all recent browsers, by default will generate a popup window warning the user that they are moving away from a secure session. Some users may see this as a bug in your app.

Lastly, as the name implies, non-secure sessions are, well, less secure.
Under https, your session ID is encrypted before going over the wire.
Without it, the session ID is transmitted as clear text. This makes session hijacking much easier.
 
Vishnu Prakash
Ranch Hand
Posts: 1026
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks Ben

I appreciate if you can look in this
thread and solve my doubts.
 
Ben Souther
Sheriff
Posts: 13411
Firefox Browser Redhat VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Originally posted by Vishnu Prakash:
Thanks Ben

I appreciate if you can look in this
thread and solve my doubts.


I saw that thread and didn't respond to it earlier because I don't really have a good answer for you.
I only use declarative security for some of the smaller, inhouse apps where I work. For the larger apps I use programmatic security.
Because of this, I don't really know all the ins and outs of form based authentication.

Someone else might.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic