ASP + SSL -- Using http and https

McKirahan · Apr 5, 2005

I have an ASP site, an SSL certificate, and an {Order page}.

I want to use "https" for the {Order page} and "http" for all others.

Each page "includes" a common ".asp" file which detects the
current protocol and page via the Request.ServerVariables():
"SERVER_PORT_SECURE" and "SCRIPT_NAME", respectively.

( If "SERVER_PORT_SECURE" = 1 Then "https" else http". )

If the {Order page} is requested then "https" is used
otherwise "http" is used. The pseudo-logic is:

If {Order page} Then
If Not {https} Then
Response.Redirect( {https} & {Order page} )
End If
Else
If {https} Then
Response.Redirect( {http} & {Other pages} )
End If
End If

Is this the best approach? Are there other ways to do it?

Thanks in advance.

Jason Brown [MSFT] · Apr 7, 2005

That's a pretty good, low-complexity approach, providing the include IS
always included where you need it. You are aware though that you'll lose
Session variables when moving from HTTP to HTTPS and vice-versa, right?

McKirahan · Apr 7, 2005

Jason Brown said:
That's a pretty good, low-complexity approach, providing the include IS
always included where you need it. You are aware though that you'll lose
Session variables when moving from HTTP to HTTPS and vice-versa, right?

[snip]

Thanks for the feedback and the heads-up, Jason.

Luckily I only use one Session variable on the HTTPS page.

Auto redirect http to https	1	Jul 19, 2010
Why getting 404 errors?	8	Apr 7, 2024
How can I learn ASP .NET	0	May 16, 2024
redirect http to https	7	May 25, 2007
How to fix ssl.SSLError: [SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:2570)	0	Jul 28, 2023
How to retrive payment result value after secure paytabs payment done in PayTabs payment gateway in asp.net	0	May 11, 2023
Change form action	0	Jul 2, 2022
Mixing HTTP and HTTPS?	0	Aug 21, 2009

ASP + SSL -- Using http and https

McKirahan

Jason Brown [MSFT]

McKirahan

Ask a Question

Similar Threads

Members online

Forum statistics

Latest Threads