Clicking the Return to Merchant button generates a browser's warning

loudmerchant
Contributor
Contributor
Posted on
‎Feb-01-2010 01:50 PM

I customized my "Return to Merchant" button using the "cbt" variable to "Return to MySite", and I specified the return page using the "return" variable.

 

However, when I click on this "Return to MySite" button, my browser Firefox shows a warning pop-up that says:

 

---------------------------------------------

Although this page is encrypted, the information you have entered is to be sent over an unencrypted connection and could easily be read by a third party.
 
Are you sure you want to continue sending this information?

 

[Continue] [Cancel]

---------------------------------------------

 

It would certainly scare the heck of novice customers. How can I prevent the warning to pop up without me having to switch to a secure https page?

 

Thanks.

 

 

Login to Me Too
Login to Reply or Kudo
4 REPLIES 4

skier
Advisor
Advisor
‎Feb-01-2010 02:45 PM

We need to see an example.  Need a URL to page that has your item button code.

 

 

Regards,

 

skier

Login to Me Too
Login to Reply or Kudo

loudmerchant
Contributor
Contributor
‎Feb-01-2010 04:47 PM

Here is the code (I replaced my website URL with "mysite.com"):

 

-----------------------------------------------------------------------------

<form name="form_submit" action="https://www.paypal.com/cgi-bin/webscr" method="post" onSubmit="return _check_submit(this);">

 

<select name="quantity">
 <option value="1">1</option>
 <option value="2">2</option>
 <option value="3">3</option>
 <option value="4">4</option>
 <option value="5">5</option>
 <option value="6">6</option>
 <option value="7">7</option>
 <option value="8">8</option>
 <option value="9">9</option>
 <option value="10">10</option>
 </select>

 

<input type="checkbox" name="agree_to_terms" value="Yes" />

 

<input type="hidden" name="business" value="info@mysite.com" />

 

<input type="hidden" name="bn" value="Mysite.com_BuyNow_WPS_US" />
              
<input type="hidden" name="cpp_header_image" value="https://www.mysite.com/image/logo.gif" />

<input type="hidden" name="cpp_headerback_color" value="E6F3FE" />

<input type="hidden" name="cmd" value="_xclick" />

<input type="hidden" name="item_name" value="Chocolate" />

 

<input type="hidden" name="item_number" value="cho-10" />

 

<input type="hidden" name="amount" value="6.00" />


<input type="hidden" name="currency_code" value="USD" />

 <input type="hidden" name="undefined_quantity" value="1" />

<input type="hidden" name="no_note" value="1" />
                       
<input type="hidden" name="cbt" value="Go back to MySite.com" />

<input type="hidden" name="no_shipping" value="2" />

<input type="hidden" name="cancel_return" value="http://www.mysite.com/chocolate/" />

<input type="hidden" name="return" value="http://www.mysite.com/chocolate/" /> 
                     
<input type="image" name="submit"  src="image/button_add.png" alt="Add to Shopping Cart" />


<img alt="" border="0" width="1" height="1" src="https://www.paypal.com/en_US/i/scr/pixel.gif" />

 

 

</form>

-------------------------------------------------------------------------------

Login to Me Too
Login to Reply or Kudo

skier
Advisor
Advisor
‎Feb-01-2010 04:52 PM

That really does not help, we need to test the live code.

 

Do you really have a secure HTTPS site as you are calling HTTPS in the cpp_header_image variable value but the the rest of URLs you're using are going to a non-secure site.   This pathing will cause unexpected results.

 

Regards,

 

skier

 

 

Login to Me Too
Login to Reply or Kudo

loudmerchant
Contributor
Contributor
‎Feb-01-2010 05:28 PM

How can I send you my URL privately?

 

 

I think the problem is that the "Return to Merchant" button is coded to *submit* a form to a return page that is in my case non-secure.

 

The Return to Merchant button's code on PayPal basically looks like this:

 

<form action="http://www.mysite.com/my_return_page" method="GET">

<input type="submit" value="Return to Merchant">

</form>

 

Just by looking at this code, you know that you are submiting a form from PayPal's secure page, where the button is located, to my non-secure return page, hence generating the warning from the browser.

 

When I changed my return page to https as in https://www.mysite.com/my_return_page, the warning did not show up because it was going to a secure page.

 

How could I make the button as a simple re-direction to go to the return page instead of a form submission?

Login to Me Too
Login to Reply or Kudo

Haven't Found your Answer?

It happens. Hit the "Login to Ask the community" button to create a question for the PayPal community.