Facebook secure url, shared

[Scott Solomko]

On my Facebook Page Tab if the visitor is viewing the page securely, my page does not receive $_REQUEST['signed_request'] from Facebook.

The page works fine when people are viewing the page via http but when using https and the shared ssl cert it appears $_REQUEST is being stripped during the redirect.

Any insight would be helpful.

Thanks.

[Alexander]

If I were you I'd check your error_log files. Maybe they can shed some light on it?

[Scott Solomko]

This is a follow up to the thread entitled "Facebook secure url, shared".

I created to test pages:

1) form.php a form with a single hidden element and a submit button
2) process.php the action to form.php and simply echo's $_POST

Everything works as expected when both pages use http://

However, when I set the action of form.php to

Code:

https://echo.gendns20.com/~mydomain/process.php

the $_POST array is empty.

So either, a) GH is not forwarding the info or b) I am not using the shared cert properly

Any advice would be greatly appreciated.

[Scott Solomko]

Testing, my replies are not being posted.

[Scott Solomko]

$_POST array is empty when submitting a form to a page that uses shared cert url

[David I]

Hello Scott,

You have created another thread. I moved reply to this one.

I'm looking your script. But it doesn't worked even with http. Did you check this?

[Scott Solomko]

Thanks David.

I did test it and it works fine with http. Not exactly sure what you are looking at because I haven't posted accurate url's, I just through the faux shared cert address in there as an example.

The code if you care which couldn't be anymore simple is as follows:

form.php (plain)

HTML Code:

<form method="post" action="process.php">
    <input type="hidden" name="field" value="field value" />
    <button type="submit">Save</button>
</form>

form.php (with faux shared cert)

HTML Code:

<form method="post" action="https://echo.gendns20.com/~mydomain/process.php">
    <input type="hidden" name="field" value="field value" />
    <button type="submit">Save</button>
</form>

process.php

PHP Code:

<pre>
<?php print_r($_POST); ?>
</pre>

[David I]

I've made a simple script to test and it works correct:

glowform.php:

Code:

<form method="post" action="https://echo.gendns20.com/~someusername/glowprocess.php">
<label>First Name: </label>
<input type="text" name="fname">

<input type="submit" name="submit" value="submit">

</form>

glowprocess.php

Code:

<pre>
<?php print_r($_POST); ?>
</pre>

As result:

HTML Code:

Array(    [fname] => David    [submit] => submit)

Please check it too.

[David I]

I found your account on the server You can see my files in the same folder.

By the way, I think that problem was with redirect to www.domain.com. I've disabled it in your .htaccess file.

# RewriteCond %{HTTP_HOST} !^(www) [NC]
# RewriteRule ^(.*)$ http://www.domain.com/$1 [L,R=301]

[Scott Solomko]

Thanks for verifying.