If you are using https pages or some of the pages (payment pages etc) in your website, keep the following in your mind. In some browsers especially IE shows warning of non-secured content in secured page. This cause user the feeling that the website is not secured.
- Use relative url always. Relative URL means those without starting with http:// or https://, instead use relative url.
- If you need to use full url, use dynamic base name in with your programming language.For example in PHP, define BASEURL = http://www.yoursite.com and use this variable in every links and forms. Change the BASEURL value between http and https depending upon the protocol ($SERVER[‘HTTPHOST’])
eg: (“https:” == document.location.protocol) ? “https://ssl.” : “http://www.”);
- Check if there is any flash content which tries to load data from non-secured url. There is a chance to load some xml configuration files using http protocol
- Also change the codebase parameter value in object tag (flash or other media) whether it is pointing http or https url. There is a chance for this url in flash content.
Change this url to https://downoad…
Inside the xdreceiver.htm file, the cross platform callback will be non secured url (http)
Change this to xdreciverssl.htm and use new code, which is available in Facebook documentation
Good luck guys