Hi all, I hope someone can help me out with this one. I opted for the DiscountASP.NET SSL addon and picked a common name, we'll call it www.mydomain.com. The thing, I only need one page on the website to be secured, i.e., the checkout page: Checkout.aspx. On my shopping cart page I have a link to the checkout page. The link is https://www.mydomain.com/checkout.aspx. This all works fine. SSL is enabled and I get the little lock in the corner. However, when the user navigates away from the page, every other page has the 'https' prefix. I don't want every page to be secured. My site uses Master Pages and all of the links (with the exception of the absolute link to the checkout page) are relative. I was thinking of maybe having a separate 'Secure' master page for the Checkout.aspx page, and in this page hard code the absolute links back the the normal 'http' pages. Would this solution work? It seems like a bit of a hack to me! Is there maybe a way of intercepting the request and automatically setting the 'http' or 'https' prefix? I want to avoid having to change my common name, if at all possible. Thanks in advance for your help with this. Regards, Ross
Tricky indeed but here's a module that handles it: http://www.codeproject.com/KB/aspnet/WebPageSecurity.aspx Salute, Mark
Hey Mark, Cheers for that link. It looks interesting. Pity there wasn't a simple Page directive. Maybe i'm asking for too much. Must get on to Scott Gu! Ross
wisemx's suggestion is a good one - code is clean and solves your issue. I have used slightly modified version of this code for many sites - works super good.
